This article describes the global service settings for the timestamp services configured in Nexus Timestamp Server. The global service settings are used by all timestamp services and not configured separately per timestamp service.
These settings are used by more than one filter and are defined in service.properties.
Set the applicable parameters, described in this table:
The path to the keystore used for signing the timestamp response. Must be a PKCS#12, JKS or PKCS#11 library (.dll, .so) file.
The password to unlock the keystore.
The password needed to unlock the signing certificate/key.
Suppress the use of a PIN-pad reader. If set to true, then force login with password even if the device reports that it has a PIN-pad reader
The friendly name of the certificate/key in the keystore in PKCS#12 and JKS. Only required if the file contains more than one private key. In PKCS#11, this must be the CKA_LABEL of the certificate and private key.
The label name of the PKCS#11 token which contains the key and certificate to be used. This parameter is OPTIONAL.
The path to the trust store. Used for validating the timestamp request if client authentication is enabled.