We are not using it yet, but we have a project to encrypt all TN3270 traf fic (and eventually other traffic) to mainframes. As usual here, we are doing z/OS first, using wha tever is built in to z/OS these days. (Target is 4Q2007.) z/VM would come next, so we have been tes ting the VM SSL server in each release. (The 5.2.0 was the first one to support Red Hat, which w e are required to use.)
I would be very interested in hearing other's experiences with the SSL se rver, positive or negative. Unless our z/OS CS (that's the name of the mainframe network group here!) people decide to go with an outside appliance, it would be hard for us to use one. If you have problems with the SSL server, PLEASE report them to IBM. We n eed for that server to work. As always, I would prefer people to answer questions posed here on this l ist, and not offline, so that the rest of us can learn from the answers. On Thu, 21 Dec 2006 10:09:57 -0500, Mrohs, Ray <[EMAIL PROTECTED]> wrot e: >How many sites are using SSL for end-to-end encryption of TN3270 >sessions? I am looking at SSLSERV as well as external appliances such as >Visara's. We will provide this for about 800 concurrent CMS users at >peak times. > >My main concerns are: >1. reliability and proven load-handling capability >2. user impact, so we want to minimize changes at the desktop >3. system overhead >4. compatibility with other initiatives such as 2-factor authentication > >I am interested in hearing about any real-life test or production >implementations. If its too sensitive to discuss in the open, please >email or call me. Thanks. > >Ray Mrohs >U.S. Department of Justice >202-307-6896 > >======================== ========================= ========== =============
