This function generates a server certificate Location of target host Pathname to installation root Alias certificate Certificate subject Path for the key store file Password to protect the contents of the key store Password to protect the private key on the key store: keypass The storetype. can be JKS or PKCS12 Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'Generate a Certificate', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : '-genkey -alias %s -keyalg rsa -dname "%s" -keystore %s -storepass %s -keypass %s -storetype %s ' % (certAlias,dname,keystore,storepass,keypass,storetype), 'path' : dsConfigPath, 'expectedRC': expectedRC } STAXResult This function self-signs a certificate Location of target host Pathname to installation root Alias certificate Path for the key store file Password to protect the contents of the key store Password to protect the private key on the key store: keypass The storetype. can be JKS or PKCS12 Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'Generate a Self-Signed Server Certificate', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : '-selfcert -alias %s -keystore "%s" -keypass "%s" -storepass "%s" -storetype "%s" ' % (certAlias,keystore,keypass,storepass,storetype), 'path' : dsConfigPath, 'expectedRC': expectedRC } STAXResult This function exports a certificate Location of target host Pathname to installation root Alias certificate Path for the key store file Password to protect the contents of the key store Format of the certificate. By default, it's in binary encoding The storetype. can be JKS or PKCS12 Output file to store certificate Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'Export a Certificate', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : '-export -alias %s -file %s -keystore "%s" -storepass "%s" -storetype %s %s' % (certAlias,outputfile,keystore,storepass,storetype,STAFCmdParams), 'path' : dsConfigPath, 'expectedRC' : expectedRC } STAXResult This function imports a certificate Location of target host Pathname to installation root Alias certificate Path for the key store file Password to protect the contents of the key store The storetype. can be JKS or PKCS12 Certificate to import Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'Import a Certificate', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : '-import -alias %s -file %s -keystore "%s" -storepass "%s" -storetype %s -noprompt' % (certAlias,inputfile,keystore,storepass,storetype), 'path' : dsConfigPath, 'expectedRC' : expectedRC } STAXResult This function lists a certificate Location of target host Pathname to installation root Alias certificate Path for the key store file Password to protect the contents of the key store Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'List a Certificate', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : STAFCmdParams , 'path' : dsConfigPath, 'expectedRC' : expectedRC } STAXResult This function add certificate to an user attribute Location of target host Path to certificate RFC file User DN to modify Path to the ldif file { 'location' : STAF_REMOTE_HOSTNAME, 'filename' : user_cert_file_rfc } 'Certificate contents:\n %s' % cmdResult 'Create %s/client.ldif' % local.temp 'Copy %s/client.ldif to %s' % (local.temp,ldif_path) { 'location' : STAXServiceMachine, 'srcfile' : '%s/client.ldif' % local.temp, 'destfile' : ldif_path, 'remotehost' : STAF_REMOTE_HOSTNAME } { 'dsInstanceHost' : DIRECTORY_INSTANCE_HOST, 'dsInstancePort' : DIRECTORY_INSTANCE_PORT, 'dsInstanceDn' : DIRECTORY_INSTANCE_DN, 'dsInstancePswd' : DIRECTORY_INSTANCE_PSWD, 'entryToBeModified' : ldif_path, 'expectedRC' : 0 } This function returns the fingerprint MD5 or SHA1 Location of target host Pathname to installation root Alias certificate Path for the key store file Password to protect the contents of the key store fingerprint. can be MD5 or SHA1 Expected return code value. Default value is 0. Wildcard 'noCheck' to not check the RC { 'name' : 'getFingerprint', 'location' : location, 'command' : '%s/bin/keytool' % JAVA_HOME, 'arguments' : ' -list -v -keystore "%s" -storepass "%s" -alias "%s"' % (keystore,storepass,certAlias), 'path' : dsConfigPath, 'expectedRC': expectedRC } STAXResult This function makes the configuration changes for SSL Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Alias certificate Bind password Keystore File Keystore type : JKS or PKCS12 Keystore pin Name for a new key manager Name for a new trust manager Optional extra parameters for specific test cases 'Configure Key Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'create-key-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customKeyMgr , 'optionsString' : '--type file-based --set enabled:true --set key-store-file:%s --set key-store-pin:%s --set key-store-type:JKS' % (keystoreFile,keystorePin), 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-key-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : keystoreType, 'optionsString' : '--set key-store-file:config/keystore --reset key-store-pin-file --set key-store-pin:%s --set enabled:true' % keystorePin, 'expectedRC' : 0 } 'Configure Trust Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'create-trust-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customTrustMgr , 'optionsString' : '--type blind --set enabled:true --set java-class:org.opends.server.extensions.BlindTrustManagerProvider' , 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-trust-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:true' , 'expectedRC' : 0 } 'Enabling LDAPS Connection Handler - Keystore type' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name' , 'objectName' : 'LDAPS Connection Handler', 'optionsString' : optionsString, 'expectedRC' : 0 } This function makes the configuration changes for startTLS Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Bind password Keystore pin Keystore file path Name for a new key manager Alias certificate Keystore type : JKS or PKCS12 Optional extra parameters for specific test cases 'Configure Key Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'create-key-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customKeyMgr , 'optionsString' : '--type file-based --set enabled:true --set key-store-file:%s --set key-store-pin:%s --set key-store-type:JKS' % (keystoreFile,keystorePin), 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-key-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : keystoreType, 'optionsString' : '--set key-store-file:%s --reset key-store-pin-file --set key-store-pin:%s --set enabled:true' % (keystoreFile,keystorePin), 'expectedRC' : 0 } 'Configure Trust Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-trust-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:true', 'expectedRC' : 0 } 'Enabling StartTLS' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name', 'objectName' : 'LDAP Connection Handler', 'optionsString' : optionsString, 'expectedRC' : 0 } This function makes the configuration changes for SASL Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Alias certificate Bind password Keystore File Keystore pin Keystore type : JKS or PKCS12 Create or enable custom key Manager. This argument can only have boolean values Create or enable custom key Manager. This argument can only have boolean values Name for a new key manager Name for a new trust manager Truststore File Truststore type : JKS or PKCS12 Truststore pin Certificate mapper name SASL mechanism handler name SASL mechanism handler options Mapping options Optional extra parameters for specific test cases 'Configure Key Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'create-key-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : KeyMgr , 'optionsString' : '--set key-store-file:%s --set key-store-pin:%s --set key-store-type:%s --type file-based --set enabled:true --no-prompt ' % (keystoreFile,keystorePin,truststoreType), 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-key-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : KeyMgr, 'optionsString' : '--set key-store-file:%s --reset key-store-pin-file --set key-store-pin:%s --set enabled:true' % (keystoreFile,keystorePin), 'expectedRC' : 0 } 'Configure Trust Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'create-trust-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : trustMgr , 'optionsString' : '--set trust-store-file:%s --set trust-store-pin:%s --type file-based --set trust-store-type:%s --set enabled:true ' %(truststoreFile,truststorePin,truststoreType), 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-trust-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : trustMgr , 'optionsString' : '--set trust-store-file:%s --set trust-store-pin:%s --set enabled:true' %(truststoreFile,truststorePin), 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-trust-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:true' , 'expectedRC' : 0 } 'Enabling LDAPS Connection Handler - Keystore type' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name' , 'objectName' : 'LDAPS Connection Handler', 'optionsString' : optionsString, 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-certificate-mapper-prop', 'objectType' : 'mapper-name' , 'objectName' : certMapper, 'optionsString' : '--set enabled:true --no-prompt %s'%optionMapper, 'expectedRC' : 0 } { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-sasl-mechanism-handler-prop', 'objectType' : 'handler-name' , 'objectName' : handlerName, 'optionsString' : '--set certificate-mapper:"%s" --set enabled:true --no-prompt %s'%(certMapper,optionSaSL), 'expectedRC' : 0 } This function makes the configuration changes for SSL and TLS Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Bind password Keystore type : JKS or PKCS12 Alias certificate Keystore pin Optional extra parameters for specific test cases 'Configure Key Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-key-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : keystoreType, 'optionsString' : '--set key-store-file:config/keystore --reset key-store-pin-file --set key-store-pin:%s --set enabled:true' % keystorePin, 'expectedRC' : 0 } 'Configure Trust Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-trust-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:true' , 'expectedRC' : 0 } 'Enabling LDAPS Connection Handler - Keystore type' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name', 'objectName' : 'LDAPS Connection Handler', 'optionsString' : optionsString, 'expectedRC' : 0 } 'Enabling StartTLS' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name', 'objectName' : 'LDAP Connection Handler', 'optionsString' : optionsString, 'expectedRC' : 0 } This function reverses the configuration changes for SSL Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Bind password Keystore type : JKS or PKCS12 Name for a new key manager Name for a new trust manager Optional extra parameters for specific test cases 'Disabling LDAPS Connection Handler' { 'location' : location, 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop' , 'objectType' : 'handler-name' , 'objectName' : 'LDAPS Connection Handler', 'optionsString' : '--set enabled:false --set use-ssl:false', 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop' , 'objectType' : 'handler-name' , 'objectName' : 'LDAPS Connection Handler', 'optionsString' : '--reset key-manager-provider --reset trust-manager-provider --reset ssl-cert-nickname', 'expectedRC' : 0 } 'Disabling SSL Trust Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'delete-trust-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customTrustMgr , 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-trust-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:false', 'expectedRC' : 0 } 'Disabling Key Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'delete-key-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customKeyMgr , 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-key-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : keystoreType, 'optionsString' : '--set enabled:false', 'expectedRC' : 0 } This function reverses the configuration changes for startTLS Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Bind password Name for the key manager Keystore type : JKS or PKCS12 Optional extra parameters for specific test cases 'Disabling StartTLS' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name', 'objectName' : 'LDAP Connection Handler', 'optionsString' : ' --set allow-start-tls:false', 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop' , 'objectType' : 'handler-name' , 'objectName' : 'LDAP Connection Handler', 'optionsString' : '--reset key-manager-provider --reset trust-manager-provider --reset ssl-cert-nickname', 'expectedRC' : 0 } 'Disabling SSL Trust Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-trust-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:false', 'expectedRC' : 0 } 'Disabling Key Manager Provider' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'delete-key-manager-provider' , 'objectType' : 'provider-name' , 'objectName' : customKeyMgr , 'expectedRC' : 0 } { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-key-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : keystoreType, 'optionsString' : '--set enabled:false', 'expectedRC' : 0 } This function reverses the configuration changes for SSL and TLS Location of target host Pathname to installation root Directory server hostname or IP address Directory server admin port number Bind DN Bind password Keystore type : JKS or PKCS12 Optional extra parameters for specific test cases 'Disabling LDAPS Connection Handler' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-connection-handler-prop', 'objectType' : 'handler-name', 'objectName' : 'LDAPS Connection Handler', 'optionsString' : '--set enabled:false --set use-ssl:false', 'expectedRC' : 0 } 'Disabling StartTLS' { 'location' : location , 'dsPath' : dsPath , 'dsInstanceHost' : dsInstanceHost , 'dsInstanceAdminPort' : dsInstanceAdminPort , 'dsInstanceDn' : dsInstanceDn , 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-connection-handler-prop' , 'objectType' : 'handler-name' , 'objectName' : 'LDAP Connection Handler', 'optionsString' : ' --set allow-start-tls:false', 'expectedRC' : 0 } 'Disabling SSL Trust Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd , 'subcommand' : 'set-trust-manager-provider-prop' , 'objectType' : 'provider-name' , 'objectName' : 'Blind Trust', 'optionsString' : '--set enabled:false' , 'expectedRC' : 0 } 'Disabling Key Manager Provider' { 'location' : location, 'dsPath' : dsPath, 'dsInstanceHost' : dsInstanceHost, 'dsInstanceAdminPort' : dsInstanceAdminPort, 'dsInstanceDn' : dsInstanceDn, 'dsInstancePswd' : dsInstancePswd, 'subcommand' : 'set-key-manager-provider-prop', 'objectType' : 'provider-name', 'objectName' : keystoreType, 'optionsString' : '--set enabled:false', 'expectedRC' : 0 }