This article will discuss enabling logging and debugging for SSL and TLS traffic on the API Gateway appliances. In some cases, reviewing SSL communication executed by the underlying Gateway Java system is necessary to troubleshoot handshake issues between (for example) an application client and the API Gateway. In order to do so, Java SSL debug must be turned on.
This is recommended only for troubleshooting purposes.
This article applies to all supported versions of the API Gateway up to and including Gateway 10.0 CR02. There is a JDK defect which affects the ability to follow these steps successfully on Gateway 10 CR03 so the steps below will not work yet on Gateway version 10 CR03.
In order to enable the SSL debug level: