PingIDM

Jetty default settings

In IDM 7.5.1 and later, the embedded Jetty web server supports Jetty 12.

When serving SSL requests, Jetty 12 checks that the incoming host header matches the server certificate’s subject and returns a 400 Bad Request error on a mismatch. If you’re upgrading to IDM 7.5.1 or later, you must ensure your IDM server certificate subject matches the host name used by your deployment.

Learn more in What’s new.

By default, the embedded Jetty server uses the following settings:

  • The HTTP, SSL, and Mutual Authentication ports defined in IDM.

  • The same keystore and truststore settings as IDM.

  • Trivial sample realm, openidm/security/realm.properties to add users.

The default settings are intended for evaluation only. Adjust them according to your production requirements.