Phil Smith III wrote: >If I?m "Paul"* then can you point me at something that would describe >how to become AT-TLS aware in a GSK application? Thanks! >...phsiii >*This happens to me *constantly*, like at least once a month. My dad >(PHS2) said it never happened to him! Four letters, one syllable, begins >with a P and ends with an L but otherwise...?!?
Sorry, Phil. Paul commented in this thread, and I thought he had experienced the support issue. It?s hard to be too precise about implementation details since I?m not familiar with your application. z/OS AT-TLS aware applications use the SIOCTTLSCTL ioctl interfaces. Here?s the general entry point into the relevant z/OS 3.1 documentation (link subject to change): https://www.ibm.com/docs/en/zos/3.1.0?topic=tls-using-siocttlsctl-ioctl I?m speculating, but maybe you could include an embedded or separate ?IVP-style? initial program step that tests/?pings? a connection that?s otherwise identical to your GSK-based connection (same IP address, port, etc.) If the test reveals that AT-TLS is configured by policy for the connection then that?d be useful information to report. Ideally when you detect AT-TLS in use (meeting certain baseline capabilities perhaps) you?d issue a message/log and proceed with the non-TLS connection logic in your application ? assuming you have that logic. (?XYZ1234: Connection secured with z/OS AT-TLS. TLS settings in MYPROD.PARM ignored.?) But I suppose in a ?Phase 0? initial implementation you could issue a message/log and stop. ????? Timothy Sipples Senior Architect Digital Assets, Industry Solutions, and Cybersecurity IBM Z/LinuxONE, Asia-Pacific [email protected] ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
