I'm sure I changed the (correct) PROFILE TCPIP file. Is there a command that I can use to verify that a certain port number is indeed being protected via SSL and the label (certificate) name in use for that port?
TIA. DJ P.S. Sorry for all this hassle, I'm not usually this slow on the uptake. Alan Altmark wrote: > On Friday, 10/14/2005 at 01:04 EST, Dave Jones <[EMAIL PROTECTED]> > wrote: > >>The client put a network sniffer of the incoming connection and they are >>able to see my incoming SSL connection (which makes it all the way to >>the SSLSERV SVM) and then a response back that looks like a CP error >>message: >>HCPCMD001E UNKNOWN CP COMMAND: R... >> >>This is SSLSERV running on a 5.1 image, btw. > > > That looks suspiciously like you didn't change the port number in your > PCOMM config to point to the encrypted port, so the client handshake is > going to the unencrypted port. (What the heck, activate the SSL trace. If > you don't see any activity, the connection didn't go through the SSL > server.) > > Alan Altmark > z/VM Development > IBM Endicott
