When the leaf certificate is not present as atrusted certificate, why does TIBCO ActiveMatrix BusinessWorks (BW) SSL still work?
Article ID: KB0086162
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks | - |
| Not Applicable | - |
Description
Resolution:
TIBCO-Only Environment:
===========
TIBCO ActiveMatrix BusinessWorks™ - All versions.
Resolution:
==========
This is expected behavior. BW requires all intermediate and root certificates to be uploaded into the trusted certificate(s) folder, but the leaf certificate itself is not required. BW behaves this way with all browsers. Usually it is secure enough to validate the root and intermediate certificates in the chain. If more security is needed, the user may enable "verify hostname" to make sure that the leaf certificate matches the host name.
Issue/Introduction
When the leaf certificate is not present as atrusted certificate, why does TIBCO ActiveMatrix BusinessWorks (BW) SSL still work?
Feedback
Yes
No
Powered by
