Only certain attribute types are valid for using in the Accept only certificates with Distinguished Names matching these values (SSLPEER) attribute. An attribute was found in the given SSLPEER value that was not one of these attributes.
For more information about the rules for the SSLPEER attribute, see IBM MQ Security.
Only certain characters are allowed to be used in the value string part of the Accept only certificates with Distinguished Names matching these values (SSLPEER) attribute. A character was found in the given SSLPEER value that was is not allowed.
For more information about the rules for the SSLPEER attribute, see IBM MQ Security.
Only certain characters and attribute types are allowed to be used in the Accept only certificates with Distinguished Names matching these values (SSLPEER) attribute. IBM MQ uses these values for matching Distinguished Names in digital certificates. These must be in the form of a comma separate string including attribute and value pairs in the form "CN=value".
For more information about the rules for the SSLPEER attribute, see IBM MQ Security.
The Accept only certificates with Distinguished Names matching these values (SSLPEER) attribute specifies the filter to use to compare with the Distinguished Name of the certificate from the peer queue manager or client at the other end of the channel.
If the CipherSpec attribute is blank, SSL is not being used, the SSLPEER data is ignored, and no error message is issued. As such, an SSLPEER value specified on a channel without a value in the CipherSpec attribute is redundant and can be removed. On the other hand, it might indicate that the channel should have a value in the CipherSpec attribute.