Also, I believe certificates are cached and not all changes will be picked up. You may have to recycle TCPIP/ TN3270 to pick up a new/changed certificate(s). I don't think you are there yet, but keep that in the back of your mind as you progress.
An OBEYFILE may do the trick, but I'm not sure. Good luck and keep us posted. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On Behalf Of Mark Pace Sent: Thursday, May 29, 2008 11:17 AM To: [email protected] Subject: Re: z/OS SSL Thanks, Hal - I broke the 2 ports into separate TelenetParms which helped in that I can know connect on standard port 23, but I have the same error on port 992. On Thu, May 29, 2008 at 11:22 AM, Hal Merritt <[EMAIL PROTECTED]> wrote: > To get SSL working, I had to add a second TELENETPARMS with a different > port specified on the SECUREPORT statement: > > TelnetParms > Secureport 992 Keyring SAF MYKEYRING > EndTelnetParms > > The first TELENETPARMS describe port 23 and do not contain any SSL > entries. Port 23 is being phased out. > > > -----Original Message----- > From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On > Behalf Of Mark Pace > Sent: Thursday, May 29, 2008 9:14 AM > To: [email protected] > Subject: z/OS SSL > > I've been working on setting up SSL support for TCP/IP. > My server name is TN3270. > I've set up RACF allowing control access for TN3270 to IRR.DIGTCERT.LIST > & > IRR.DIGTCERT.LISTRING > I've set up a ring and a cert. > > > ..snip > > NOTICE: This electronic mail message and any files transmitted with it are > intended > exclusively for the individual or entity to which it is addressed. The > message, > together with any attachment, may contain confidential and/or privileged > information. > Any unauthorized review, use, printing, saving, copying, disclosure or > distribution > is strictly prohibited. If you have received this message in error, please > immediately advise the sender by reply email and delete all copies. > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO > Search the archives at http://bama.ua.edu/archives/ibm-main.html > > -- Mark Pace Mainline Information Systems ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
