allow unauthenticated clients


allow unauthenticated clients=unauthenticated-clients-option


unauthenticated-clients-option If this is set to “yes”, clients may connect without a client certificate, or with a client certificate which is not registered with Enterprise Server. (If the client sends a certificate, it must still be signed by a Certificate Authority in the DCAS listener's CA root file.)


Default: Require a registered client certificate
Note: Enabling this option is a security risk, but restores the behavior of earlier versions of Enterprise Server. Customers using DCAS and upgrading from an earlier version may wish to set this option for backward compatibility until they have an opportunity to assess the security of their DCAS configuration. See the topic DCAS Security for more information.