All Session Manager TLS services support validation of peer Identity Certificates consisting of a SHA2 signature and a public key of 2048 bits.

Session Manager verifies whether the peer identity certificate can be traced to a trusted root CA certificate. The root CA certificate must reside in the service Trust Store.