I've said this here before, but it bears repeating: although I'd be the first to agree that this sounds stupid/basic, make sure they know NOT to turn it on Just Because. We've had two customers who decided it would increase security, so they enabled it--for a connection that was already using https. (To be precise, it wasn't the customer per se--it was their outsourcer.) The server (non-z/OS side) was not amused by the double TLS handshake. Fortunately by the second one, I recognized it quickly...
-----Original Message----- From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of Paul Gorlinsky Sent: Thursday, May 9, 2024 6:43 PM To: IBM-MAIN@LISTSERV.UA.EDU Subject: AT-TLS Redbook I have a client that in the early stages of planning an AT-TLS installation for TLS 1. Is there a Redbook that focuses on AT-TLS? ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN