× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.



Hi Jeff,

The vendor documentation is correct. An SSL/TLS connection usually
requires a _server-side_ certificate (there's also anonymous TLS that
does not need certificates, but it's not in wide use). _client-side_
certificates exist, can be used, and are supported by most application
(like the i5/OS FTP client), but they're not used that often - unless
your vendor specifically requests a _client-side_ certificate, you can
forget about CSRs.

Even then, you can configure the client certificate using DCM in the
same user interface where you add additional CAs.

Sorry for the incomplete reply.

Greetings,

Lukas

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Jeff Young
Sent: Tuesday, August 21, 2007 10:07 PM
To: Midrange Systems Technical Discussion
Subject: RE: System i as FTP SSL Client

Lukas,
According to the vendor documentation,"FTP/SSL requires the exchange
of SSL certificates ... in concert with the RFC 2228 standard.
Does this not imply that I *do* in fact need to have a certificate?

Thanks,


Lukas Beeler <l.beeler@xxxxxxxxxxx> wrote:
You don't need a certificate to run an SSL clients, but you need DCM
which is part of the administrative webserver to to add custom root CAs.
No CSR needed, and no Websphere.

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Jeff Young
Sent: Tuesday, August 21, 2007 9:47 PM
To: midrange-l@xxxxxxxxxxxx
Subject: System i as FTP SSL Client

What do I need to do for the System i to be a SSL FPT client.
The System i is *not* running any web server (http or websphere).
From what I have read, I need to obtain a Certificate from one of the
major authorities, but to to that I need to use an http or websphere
product to create a CSR (Certificate Sigining Request).
Has anyone done this for a System i without running http or websphere?
I will also be using PGP to encrypt my data.

Thanks,


Jeff Young
Sr. Programmer Analyst
IBM -e(logo) server Certified Systems Exper - iSeries Technical
Solutions V5R2
IBM Certified Specialist- e(logo) server i5Series Technical Solutions
Designer V5R3
IBM Certified Specialist- e(logo)server i5Series Technical Solutions
Implementer V5R3












---------------------------------
Boardwalk for $500? In 2007? Ha!
Play Monopoly Here and Now (it's updated for today's economy) at Yahoo!
Games.

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.