All of our TN3270 traffic is now under TLS. The PROFILE entries are a little strange as you have to define a port (unlike FTP). We use ICSF, so it's been on the whole time. Many say it is not a deal breaker requirement.
I think that TLS is a superset of SSL, so they might talk ok. Getting SSL/TLS support in a client is often an extra cost option. You should be able to poke around PROCOMM settings and see if you see the configuration options. IMHO, the biggest single challenge is certificate management. Certificates have a pretty steep learning curve. As with any encryption solution, the actual encryption is trivial but the key (certificate) management is a killer. HTH and good luck. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Henke, George Sent: Tuesday, February 07, 2012 1:27 PM To: [email protected] Subject: TLS, AT-TLS, Encryption Requirements Has anyone done this? Besides coding TTLS in the TCPCONFIG statement in the TCPIP PROFILE does anything else, like enabling encryption cards, need to be done? Also, is TLS downward compatible with older TN3270 emulators, like PROCOMM? ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
