- By default, instance trusts the Certificate Authority (CA) for a certificate.
- This ensures the instance accepts self-issued certificates.
- If Instance does not need to trust all certificates by default, set the general security property 'com.glide.communications.trustmanager_trust_all' to false.
- But in the mid server properties file, it still shows as true (\installation dir\properties\glide.properties)
Release or Environment
- By default, the MID Server trusts all SSL certificates to support self-signed certificates.
- The property "com.glide.communications.trustmanager_trust_all" cannot be added to the MID Server Property (ecc_agent_property) directly.
- To enable certificate validation, add the following line of code in the "glide.properties" file on the MID Server's installation directory, under the folder named properties.
com.glide.communications.trustmanager_trust_all = false;
- Adding this line ensures that the MID Server validates the server certificate during the SSL handshake.
- This setting reduces the risk associated with any type of spoofing of the instance being connected to, IP layer spoofing, and Man In The Middle (MITM) attacks.
- Note: Adding this line of code requires a restart of the MID Server.