Hi everyone,
We are facing some issues regarding IWS Agent for z/OS where we have
to configure HTTPOPTS but for this option there is no way to restrict the
encryption protocol for TLSv1.2 only.
All they have available to configure are the following:
>--+-------------------------------+---------------------------->
| .-CAONLY-. |
'-SSLAUTHMODE--(--+-STRING-+--)-'
>--+-------------------------------------+---------------------->
| .-tws--------. |
'-SSLAUTHSTRING--(--+-SSL string-+--)-'
>--+------------------------------------------------+----------->
'-SSLKEYRING--(----SSL key ring db filename----)-'
>--+----------------------------------------------------+------->
'-SSLKEYRINGPSW--(----SSL key ring psw filename----)-'
>--+-------------------------------+---------------------------->
| .-SAF-. |
'-SSLKEYRINGTYPE--(--+-USS-+--)-'
>--+------------------------------------+----------------------->
| .-512-------------. |
'-SSLPORT--(--+-SSL port number-+--)-'
We have to fix all the issues related to the vulnerabilities but for this
service it looks like there is no solution available for it.
Does anyone that already have problems with it would suggest a way to do it
??
Pagent would be an alternative viable to implement ??
Thanks in advance for any help.
Gilson
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
