If you cycled TCPIP and not TELNET then it won't work. You will need to cycle TELNET or whatever the STCs name is that runs the TN3270 connections.
Rob Schramm Rob Schramm Senior Systems Consultant On Tue, Feb 3, 2015 at 6:35 AM, Mark Regan < [email protected]> wrote: > BTW, there is a mailing list that covers all things TCPIP for the > mainframe, including VTAM since we also do SNA still too. It's called > IBMTCP-L. > For IBMTCP-L subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO > IBMTCP-L Thanks, > Mark Regan, USNR-Ret, 1969-1991 > <>< > From: Mainframe Mainframe <[email protected]> > To: [email protected] > Sent: Tuesday, February 3, 2015 2:18 AM > Subject: set up a TN3270 SSL Port > > Hello All , I have got requirement to setup SSL on TN3270 and I used below > link for doing this > > > http://www3.rocketsoftware.com/bluezone/help/v50/en/bzadmin/CHAPTER_8/Enable_SSL_on_zOS.htm > > > Below steps I followed, > > SSL for Telnet Using Server Certificate > > 1. > > Follow - Create an HFS KEYRING File > < > http://www3.rocketsoftware.com/bluezone/help/v50/en/bzadmin/CHAPTER_8/Enable_SSL_on_zOS.htm#CreateHFSkeyring > > > 2. > > Follow - Create a Self-signed Certificate if a Trusted CA is Not > Available > < > http://www3.rocketsoftware.com/bluezone/help/v50/en/bzadmin/CHAPTER_8/Enable_SSL_on_zOS.htm#CreateSelfSigned > > > 3. > > Follow - Create a Server Certificate > < > http://www3.rocketsoftware.com/bluezone/help/v50/en/bzadmin/CHAPTER_8/Enable_SSL_on_zOS.htm#CreateServerCert > > > 4. > > OMVS change to your SSL directory > 1. > > gskkyman > 2. > > Option 2 – open database > 3. > > Enter your database name > 4. > > Enter password > 5. > > Option 1 – Manage keys > 6. > > Select the Server Certificate > 7. > > Option 3 – Set key as default > 5. > > Add the following to TCPIP.PROFILE: > 1. > > TelnetParms > 2. > > SECUREPORT 992 > 3. > > KEYRING HFS /ssl/key.kdb > 4. > > SSLTIMEOUT 120 > 5. > > EndTelnetParms > > > then recycled TCPIP. Can you please confirm, If I am still missing out > something for this setup and how do I test this new changes before handover > to customer. > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
