ubleshoot ATTLS issues.
External - Public
Classified by dustin.ha...@go2vanguard.com on 2022.05.25 08:30:10
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Michael Babcock
Sent: Wednesday, 2022 May-25 08:19
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: AT-TLS & FTP troubles
On Wed, May 25, 2022, at 10:30 AM, Dustin Hayes wrote:
>
> What Michael is trying to tell you is that your confusing "sFTP" and "FTPs",
> these are two very different protocols which have nothing to do with each
> other (think beta vs vhs).
>
> sFTP is "ftp tunneled though the SSH interface"
Lloyd/Dustin,
>
Thank you. Thank you. Thank you. You are both right. I totally understand
the difference ... and I was still criss-crossing them.
What I am trying to do is FTPS - native ftp with AT-TLS involved to handle
the SSL/TLS security stuff. And every one of my tests has been wrong
vanguard.com on 2022.05.25 08:30:10
-Original Message-
From: IBM Mainframe Discussion List On Behalf Of
Michael Babcock
Sent: Wednesday, 2022 May-25 08:19
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: AT-TLS & FTP troubles - cannot get very simple setup working
WARNING: This ema
You are misusing things here. SFTP does not equal FTPS.
SFTP is overlaid onshore which is using an encrypted interface itself. FTPS is
what the FTP server can support.
WinSCP can do both but not FTPS on port 22.
Lloyd
Sent from AT Yahoo Mail for iPad
On Wednesday, May 25, 2022, 11:20 AM,
I don’t think you can use PAGENT for port 22 (not 100% sure on that). If
using port 22 configure SSHD.
Did you set the trace parm in PAGENT to 255? You will get much more info
in SYSLOG by doing that.
On Wed, May 25, 2022 at 10:05 AM Bob wrote:
> That's one I have changed back and forth 21
That's one I have changed back and forth 21 ... 22 ... 21 .. 22 ... 21 &22.
The config I started with had 21 in it, but the WinSCP references 22 so I have
been trying both ... without success. I changed it back to 21 now. Still fails.
I just added an ftp configuration parameter of FTPLOGGING
That's one I have changed back and forth 21 ... 22 ... 21 .. 22 ... 21
&22. The config I started with had 21 in it, but the WinSCP references 22
so I have been trying both ... without success. I changed it back to 21
now. Still fails.
I just added an ftp configuration parameter of FTPLOGGING
I can SSH into z/OS USS but I don’t use pagent for port 22. You should
configure SSHD for that. Remove port 22 from PAGENT.
On Wed, May 25, 2022 at 8:46 AM Bob wrote:
> I am struggling to get AT-TLS and FTP working on my new z/OS 2.5 system and
> I don’t know why. I’m sure I am
>
> missing
Set your trace to 255 in the policy, refresh PAGENT and check the Syslog.
I suspect a ciphersuite issue.
On Wed, May 25, 2022 at 8:46 AM Bob wrote:
> I am struggling to get AT-TLS and FTP working on my new z/OS 2.5 system and
> I don’t know why. I’m sure I am
>
> missing something very simple,
would an SSL trace help here ?
not the same 'type' of connection, I had an issue with inbound
connections to CICS and DB2 that was self inflicted, the AT-TLS add on
required I failed to order and the connections were using some default,
I was able to find this by performing an SSL trace and
I am struggling to get AT-TLS and FTP working on my new z/OS 2.5 system and
I don’t know why. I’m sure I am
missing something very simple, but I have spent a lot of time over the last
few weeks trying to figure it out
and I cannot. Note that ftp without encryption does work and I have
nothing
12 matches
Mail list logo