Telnet-SSL Questions
- From: "Cov" <louncov@xxxxxxxxxxx>
- Date: 23 Jun 2006 20:21:19 -0700
G'day,
I have successfully configured a 'telnet-ssl' session by using DCM to
create a *SYSTEM Certicate Store, associate the Certificate with
Telnet, restart the Telnet Server, copy the Certificate to a PC &
import it into the PC's PCOMM Key database using the "IBM Key
Management" utility under Client Access. I have then changed the PCOMM
5250 Emulator to use Port 992 & "enabled Security". In summary, all is
good: I can establish a 992 telnet-ssl session between a PC (actually,
the PC Console PC!) & the iSeries (820) Server.
My next step is to attempt the same connection from another PC to the
same iSeries Server. I have taken the same Key, copied it to another
PC, imported it into the PCOMM Key Database, updated the PCOMM 5250
session (as above), but my 5250 session just hangs saying (at the foot
of the emulator): "Secure Socket is connect to remote server/host
xxx.xxx.xxx.xxx using port 992..." with a blank screen.
If I display the jobog to a QTVTELNET job on the Host, I get the
following messages:
"A remote host did not respond within the timeout period."
"SSL Handshake exceeded timeout limit for client 10.19.99.166 port
1068"
What am I doing wrong? Have I missed something? Am I looking at it too
simply? With 27 iSeries machines to support, I'd ideally like to use
just the one CA for all PC & Servers. Creating multiple CAs & importing
them onto every PC would be a nightmare!
Any assistance would be greatly appreciated.
Thanks, Tony Covelle.
.
- Follow-Ups:
- Re: Telnet-SSL Questions
- From: Bradley V. Stone
- Re: Telnet-SSL Questions
- Prev by Date: End user jobs
- Next by Date: Re: End user jobs
- Previous by thread: End user jobs
- Next by thread: Re: Telnet-SSL Questions
- Index(es):
Relevant Pages
|
