Chris,
If someone is connecting with secure iSeries Access (I know, we should be using ACS), wouldn't that user have to change their session configuration from secure to non-secure.
Communication
Configure
Properties
Uncheck Use Secured Sockets Layer (SSL)
Check Not Secured.
This would have to be done on every remote PC, correct.
Paul
-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Chris Bipes
Sent: Monday, February 01, 2016 3:18 PM
To: 'midrange-l@xxxxxxxxxxxx'
Subject: RE: Restarting Telnet
The other option is to change your telnet to allow port 23 while you are making the certificate changes. If someone does need to get in while you are troubleshooting, they are able to, insecurely but connected and able to work. Just a temporary solution unless you have a firewall or some other network restriction that will not allow the user to connect to the alternate port.
--
Chris Bipes
Director of Information Services
CrossCheck, Inc.
707.665.2100, ext. 1102 - 707.793.5700 FAX chris.bipes@xxxxxxxxxxxxxxx www.cross-check.com
Notice of Confidentiality: This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by e-mail (by replying to this message) or telephone (noted above) and permanently delete the original and any copy of any e-mail and any printout thereof. Thank you for your cooperation with respect to this matter.
-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Buck Calabro
Sent: Monday, February 01, 2016 12:09 PM
To: midrange-l@xxxxxxxxxxxx
Subject: Re: Restarting Telnet
On 2/1/2016 3:02 PM, Steinmetz, Paul wrote:
I'm going to re-ask a basic question here, related to the testing the new SSL cert.
I actually need to do this.
I have a new SSL 256 Sha cert, tested on my playground LPAR.
I also have the new cert install on R&D LPAR, but have yet assigned it apps.
I need a way, if possible, to test the new cert with various apps, before installing and applying this to Production.
One of the issues, is not all the apps are on the R&D LPAR.
Or, If something does not work on Production, within DCM, Update Certificate Assignment, assign that one app back to the old cert.
I'm actually looking at this right now. I'm hoping the DCM APIs will give me the ability to script this exact scenario:
http://www-01.ibm.com/support/knowledgecenter/ssw_ibm_i_72/apis/secex1.htm
I have not done any work with them yet. Other stuff popped up.
--
--buck
Visit wiki.midrange.com and register for an account. Edit a page that helps you, and because it's public, you'll help someone else, too!
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit:
http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at
http://archive.midrange.com/midrange-l.
Please contact support@xxxxxxxxxxxx for any subscription related questions.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options,
visit:
http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at
http://archive.midrange.com/midrange-l.
Please contact support@xxxxxxxxxxxx for any subscription related questions.
As an Amazon Associate we earn from qualifying purchases.