Gibney, Dave wrote: > Looks to be correct. I never got that far with using client > certificates, yet. Still SSL clients that speak z/OS also are still rare > (especially free ones). I've come to depend on it and hope it can be > fixed.
BlueZone Secure FTP is free and supports client certificates for authentication. It can store the client certificate in its own store or use personal certificates from the Microsoft store. The easiest way is to use the browser to import the certificate into the MS personal certificate store then, configure BlueZone to use it (check box). At connect time, the user is prompted for the client certificate private key password prior to the client sending it to the mainframe. If you are using a FIPS configured workstation, and BlueZone is configured to run in FIPS mode, the algorithm used to sign the client certificate must also be FIPS compliant or BlueZone will display an error when attempting to open the private key with the password. That said, you should not be able to import a non-FIPS compliant certificate into a FIPS enabled workstation's certificate store, so it should not be an issue. Steve Bireley BlueZone Software www.bluezonesoftware.com ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
