× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. March 2026

RE: Secure connection error, return code 6000 (FTP)

Just to clarify.

The FTP server is ours, but hosted by a 3rd party. The IBM i is the CLIENT. The certificate on the FTP server updated over the weekend (as it will again in a few months).

The problem:
We have the CA Certificate installed and trusted (ISRG Root X1), but the intermediate certificate changed to R13, which we did not have installed.

This is infuriating.

Brad – if I run
FTP RMTSYS('myserverIP') SECCNN(*SSL) from a command line, it will ASK me if I want to trust this server this time.

My problem is that I’m running hundreds of FTP connections in batch – using scripts from source members – here it does NOT ask.

I used F1 help in the interactive FTP session to see the certificate:

Message ID . . . . . . : TCP3D50 Severity:. . . . . . . : 10

Message . . . . : The server's certificate is not signed by a trusted
certificate authority.
Cause . . . . . :
The server certificate information:
-----------------------------------
Issuer:
Common name: R13
Organization: Let's Encrypt
Locality or city:
State or province:
Country or region: US
Subject:
Common name: myftpserver.com
Organization:
Locality or city:
State or province:
Country or region:
Validity period:
Start: 20260328122055
End: 20260626122054
Fingerprint (SHA256):
3F:29:2F:C8:F6:25:92:CB:96:6F:E2:F6:41:B6:17:46:BE:94:26:CF:88:B5:03:8B:84
:C2:41:6A:96:09:E2:4E
Recovery . . . : Check the server's certificate information carefully to
decide if it can be trusted.

From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of Pete Helgren
Sent: Monday, March 30, 2026 9:40 AM
To: midrange-l@xxxxxxxxxxxxxxxxxx
Subject: Re: Secure connection error, return code 6000 (FTP)

EXTERNAL EMAIL - This email was sent by a person from outside your organization. Exercise caution when clicking links, opening attachments or taking further action, before validating its authenticity.

So, I haven't followed this before so, sorry for the questions if they
have already been asked: How was the certificate updated and what CA
generated the certificate? A well known external CA wouldn't be an
issue if you already imported the root and intermediate certificates.
If it was self signed, the DCM's CA certificate shouldn't change on a
re-issue so it should be trusted....

Pete Helgren
https://protect.checkpoint.com/v2/r01/___www.petesworkshop.com___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjNlZDI6MThiNGVlZGYzMzQ2ODZjMjJmZGUzNWViZTRkOTYxMTY2NTA1NTI0ZWJjNWI1ZDkxM2I3M2NhNzliZDk0NDM0MTpwOlQ6Rg
CISSP - MSCM
GIAC Cloud Penetration Tester
AWS Certified Cloud Practitioner
Microsoft Certified: Azure Fundamentals

On 3/30/2026 7:35 AM, Greg Wilburn wrote:
I know there was a lengthy discussion about this a while back.

We have a hosted FTP server that is used extensively by our processes. The wheels fell off this weekend (again) because the certificate updated, and is not trusted in our DCM.

What, if anything, is IBM doing about this? This is not an issue in the PC world.
This is only getting worse with the rapid expiration of certs.

Greg



[Logo]<https://protect.checkpoint.com/v2/r01/___https://www.totalbizfulfillment.com/___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OmIzMzA6Y2IwNWVkZTQ3YTc5ODdlNzI3Zjg3ZmUxOWJmODk1OGFiNThhNGI4ZDVkODA4MzFkMjYzY2VlNDM2MzEzY2EyZTpwOlQ6Rg<https://protect.checkpoint.com/v2/r01/___https:/www.totalbizfulfillment.com/___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OmIzMzA6Y2IwNWVkZTQ3YTc5ODdlNzI3Zjg3ZmUxOWJmODk1OGFiNThhNGI4ZDVkODA4MzFkMjYzY2VlNDM2MzEzY2EyZTpwOlQ6Rg>> Greg Wilburn
Director of IT
301.895.3792 ext. 1231
301.895.3895 direct
gwilburn@xxxxxxxxxxxxxxxxxxxxxxx<mailto:gwilburn@xxxxxxxxxxxxxxxxxxxxxxx<mailto:gwilburn@xxxxxxxxxxxxxxxxxxxxxxx%3cmailto:gwilburn@xxxxxxxxxxxxxxxxxxxxxxx>>
1 Corporate Dr
Grantsville, MD 21536
https://protect.checkpoint.com/v2/r01/___www.totalbizfulfillment.com___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjA2YjY6ODIyMWNmMWQyZjhlN2I0NjgyMjRlNWU3MDc2NGU0ODU0NTUxYWRhNzBiYmJlYzIzMjY0NmM0YTUxZTdmNzdhYTpwOlQ6Rg<https://protect.checkpoint.com/v2/r01/___http://www.totalbizfulfillment.com___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjdjM2M6NWY5YzVjODIwNDI5M2I3ZmIwNDUwNWNiZDhkZmYzNDZkYmJlY2RlYTk4N2E2Y2MwMWEyM2U2NmQ3YzJlMjc0NjpwOlQ6Rg<https://protect.checkpoint.com/v2/r01/___www.totalbizfulfillment.com___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjA2YjY6ODIyMWNmMWQyZjhlN2I0NjgyMjRlNWU3MDc2NGU0ODU0NTUxYWRhNzBiYmJlYzIzMjY0NmM0YTUxZTdmNzdhYTpwOlQ6Rg%3chttps:/protect.checkpoint.com/v2/r01/___http:/www.totalbizfulfillment.com___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjdjM2M6NWY5YzVjODIwNDI5M2I3ZmIwNDUwNWNiZDhkZmYzNDZkYmJlY2RlYTk4N2E2Y2MwMWEyM2U2NmQ3YzJlMjc0NjpwOlQ6Rg>>
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx<mailto:MIDRANGE-L@xxxxxxxxxxxxxxxxxx>
To subscribe, unsubscribe, or change list options,
visit: https://protect.checkpoint.com/v2/r01/___https://lists.midrange.com/mailman/listinfo/midrange-l___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjE3ZGU6ODU5Yzk5OGE3ZjUzY2QxYmZmM2U2ODhjZjhjOGIyNmNiNDliYTlmZDJiMzFmMzEyOWY5MTY2NjMwMDg2N2ZmZDpwOlQ6Rg<https://protect.checkpoint.com/v2/r01/___https:/lists.midrange.com/mailman/listinfo/midrange-l___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3OjE3ZGU6ODU5Yzk5OGE3ZjUzY2QxYmZmM2U2ODhjZjhjOGIyNmNiNDliYTlmZDJiMzFmMzEyOWY5MTY2NjMwMDg2N2ZmZDpwOlQ6Rg>
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx<mailto:MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx>
Before posting, please take a moment to review the archives
at https://protect.checkpoint.com/v2/r01/___https://archive.midrange.com/midrange-l___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3Ojg0NjQ6YmM3ODJjMjRlY2U4MjIyYTk2ZTM4OWI1NTkwNjk5M2RkYzE1NzhlN2ZjMjI2ZmNiNmRjNTYyOGFiNGE1NDE2NzpwOlQ6Rg<https://protect.checkpoint.com/v2/r01/___https:/archive.midrange.com/midrange-l___.YzJ1OnRvdGFsYml6ZnVsZmlsbG1lbnQxOmM6bzo5NzUzN2NhY2ZiM2ZkOWQ3YzYwZDA5NmI2MGRhMmMzNTo3Ojg0NjQ6YmM3ODJjMjRlY2U4MjIyYTk2ZTM4OWI1NTkwNjk5M2RkYzE1NzhlN2ZjMjI2ZmNiNmRjNTYyOGFiNGE1NDE2NzpwOlQ6Rg>.

Please contact support@xxxxxxxxxxxxxxxxxxxx<mailto:support@xxxxxxxxxxxxxxxxxxxx> for any subscription related questions.

Greg Wilburn
Director of IT
301.895.3792 ext. 1231

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.