To answer the original question by the OP, for FTP you can specify "SECURE LOGIN OPTIONAL" in FTP.DATA ... of course doing that eliminates the need for any certificates. I suppose it could be an emergency circumvention but you'd have to assess the significance of the ramifications for your system. I don't know of any way to accept expired certificates while rejecting other "more erroneous or missing" certificates. An expired certificate is really worthless as it is easily forged.
On Thu, Jan 6, 2022 at 7:51 AM Frank Swarbrick <[email protected]> wrote: > Is there a way to tell the z/OS FTP client to ignore (and allow) an > expired server certificate to be used? > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
