At least some System SSL functions are protected by RACF classes -- "In order for System SSL to use cryptographic support provided through ICSF, the ICSF started task must be running and the application user ID must be authorized for the appropriate resources in the RACFR CSFSERV class (when the class is active), either explicitly or through a generic resource profile."
Secure Sockets Layer is designed to be used over TCP (or similar) but System SSL is not an "add-on to TCP." It could more correctly be described as "a software front-end to z/OS Crypto Services." The use of SSL does not imply the use of any particular ports or similar, so it is largely transparent to TCP administrators. Charles -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of R.S. Sent: Thursday, January 22, 2015 2:22 PM To: [email protected] Subject: Re: Who is using SYSTEM SSL Charles: there is no such class and IMHO no such reason. Dennis: System SSL is add-on to TCPIP and it is used by TCPIP and its protocols like TN3270 or ftp. IMHO it's up to TCPIP administrators to know what ports, protocols, services are in use. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
