] On
Behalf Of Alan Ackerman
Sent: Wednesday, April 16, 2008 7:27 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Second TCPIP stack and SSL
We have been ordered to protect all TN3270 sessions to VM with SSL. This
=
means turning on SSLSERV and disabling non-SSL. (INTERNALCLIENTPARMS
SECURECONNECTION REQUIRED
Hi, Alan.
See if your shop has installed and supports the OSA ICC feature. It's a
no charge feature (that's goodness:-) that allows for TN3270 clients
(PCOMM, Vista, etc.) to attach directly to the OSA card and appear to CP
as locally attached 3270s. The VM TCP/IP stack is not involved at
On Thursday, 04/17/2008 at 08:45 EDT, Mrohs, Ray [EMAIL PROTECTED]
wrote:
Unless anything has changed, SSLSERV is a non-starter if you have more
than 126 concurrent sessions. Aside from that, it is very stable with
the latest patches (our VM is 520).
z/VM 5.2 is limited to 128 sessions, but
Message-
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED] On
Behalf Of Alan Ackerman
Sent: April 16, 2008 19:27
To: IBMVM@LISTSERV.UARK.EDU
Subject: Second TCPIP stack and SSL
We have been ordered to protect all TN3270 sessions to VM with SSL. This
means turning on SSLSERV
: April 16, 2008 19:27
To: IBMVM@LISTSERV.UARK.EDU
Subject: Second TCPIP stack and SSL
We have been ordered to protect all TN3270 sessions to VM with SSL. This
means turning on SSLSERV and disabling non-SSL. (INTERNALCLIENTPARMS
SECURECONNECTION REQUIRED, I think.) IBM level 2 has suggested
Dave,
When I configured OSA Express2 ICC on our z9 BC in January 2007 I
didn't see any indication that SSL was supported. Did I miss
something, or did something change since then? If you could send me
a documentation or Redbook reference I'd appreciate it.
Thanks,
Mark
At 09:37 AM
Hi, MArk.
I stand corrected, OSA ICC does not support SSL.I thought I saw some
SSL configuration parameters on the OSA ICC configuration screen, but
the OSA ICC doc doesn't mention SSL at all. I may be confusing it with
the network support for connecting to the HMC instead
As you
System [mailto:[EMAIL PROTECTED] On
Behalf Of [EMAIL PROTECTED]
Sent: Thursday, April 17, 2008 09:03
To: IBMVM@LISTSERV.UARK.EDU
Subject: Re: [IBMVM] Second TCPIP stack and SSL
Our network went down overnight, so I couldn't connect to the mainframe
through my PC this morning. I hit the KVM switch
On Thursday, 04/17/2008 at 01:52 EDT, O'Brien, Dennis L
Dennis.L.O'[EMAIL PROTECTED] wrote:
I looked for information on SSL support in OSA-ICC and didn't find any.
The Redbook I did find, SG24-6364-01, OSA-Express Integrated Console
Controller Implementation Guide, doesn't mention SSL, but
Unless anything has changed, SSLSERV is a non-starter if you have more
than 126 concurrent sessions. Aside from that, it is very stable with
the latest patches (our VM is 520).
We plan to post a refresh of the SSL Enabler 2 system that will contain
these fixes as soon as time permits.
An
On Thu, 17 Apr 2008 10:51:30 -0700, O'Brien, Dennis L
Dennis.L.O'[EMAIL PROTECTED] wrote:
Alan didn't mention that we're a large shop, and most of the mainframes
are 2000 miles away from the programmers. One of them is on the other
side of the Atlantic. KVM switches and HMC access aren't going
We have been ordered to protect all TN3270 sessions to VM with SSL. This
means turning on SSLSERV and disabling non-SSL. (INTERNALCLIENTPARMS
SECURECONNECTION REQUIRED, I think.) IBM level 2 has suggested that other
shops have a second TCP/IP stack to use when there are problems with TCPI
P
in an
emergency (and only long enough to correct the issue with the stack that's
SSL-enabled.)
-Original Message-
From: The IBM z/VM Operating System
To: IBMVM@LISTSERV.UARK.EDU
Sent: 4/16/2008 6:27 PM
Subject: Second TCPIP stack and SSL
We have been ordered to protect all TN3270
When I started putting in SSLSERV, I did it in a completely separate
stack (TCPTEST, SSLSERV, FTPTEST). When everything was working, I
migrated SSLSERV into the production stack with TN3270 available on 2
ports (cleartext on 23, secure on 992). Then we set the deadline for our
users to get
I haven't tried this but is it possible to have ICC ports accessable for
'emergencies'.
-Original Message-
From: The IBM z/VM Operating System [mailto:[EMAIL PROTECTED]
Behalf Of Alan Ackerman
Sent: Wednesday, April 16, 2008 6:27 PM
To: IBMVM@LISTSERV.UARK.EDU
Subject: Second TCPIP stack
15 matches
Mail list logo