Re: DCM help -- trying to set up TLS (and Secured Telnet) on a V7R5 box

On 10/4/22 5:43 AM, Brad Stone wrote:

You don't need to create a local certificate. Just create the *SYSTEM
store.

Dear Brad, et al.:

"Just create the *SYSTEM store"?

If I look at the *SYSTEM store, all I see is:

LOCAL_CERTIFICATE_AUTHORITY_7813280O(1)
Touchtone
Expires in 7299 days
ECDSA (256 bits)
Certificate Authority (Enabled)

and if I go to "Manage Application Definitions" (something I definitely remember from the old V6 and V4 DCMs), I see a box for

QIBM_QTV_TELNET_SERVER
IBM i TCP/IP Telnet Server
Server
No certificates assigned

If I click "View" on that box, I see "None assigned" under Assigned Certificates, and if I click "Assign Certificates," nothing is listed to assign. Is an empty *SYSTEM store really all I need now, for secured Telnet? No assignments?

Also, as I recall, bringing up the Telnet server in Secured mode requires cycling that server, varying it off and back on. Is that still true? It's easy enough to do when you also have a physical terminal on a Twinax line, and I vaguely recall using it through the separate system console Ethernet port on our E4A, but how do I do this without physical access? Through iNav?

And what about the other thing we need, enabling HTTPS support in Scott Klement's HTTPAPI?

--
JHHL