----- Original Message -----
From: "Melissa Perry" <[EMAIL PROTECTED]>
Newsgroups: bit.listserv.ibm-main
Sent: Thursday, September 25, 2008 10:38 AM
Subject: Digital Certificate Implementation TN3270
I am looking for the best way to handle digital certificates and TN3270
emulation. I am in the process of implementing SSL on Telnet. I have
generated a certauth and a certsign certificate through acf2. Both of
these
certificates were imported onto a workstation and are functioning as they
should be. My concern is, certificates having to be imported to each
workstation that connects to the mainframe. What is the industry standard
for implementing certificates for this?
Melissa,
Requiring a client certificate is an unnecessary complication. Your server
certificate should suffice to establish the encrypted connection. I've set
up hundreds of SSL connections with TN3270, and none of them required a
client certificate. If your TN3270 client is requiring a client certificate
to set up an SSL connection, get another TN3270 client, like Tom Brennan's
Vista or PCOMM.
Regards,
Tom Conley
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
