I hope I'm understanding what you are saying. Localhost is for use ONLY within a single TCPIP stack or system. It is another way of writing non-routable IP address '127.0.0.1'. Maybe configuring host files will allow you to do this but that will be very confusing and awkward to support.
You should NOT be using localhost to get from your device (PC or whatever) to the z/OS TCPIP stack. You should configure a name for your ZOSMF IP address. If you always run ZOSMF on the same z/OS system you may already have a suitable name in DNS for the system's static VIPA. If you move ZOSMF between systems in the sysplex you will need a Dynamic Virtual IP Address (DVIPA) and an entry in DNS (or host files) for it. I'm struggling to follow what you are saying about PuTTY for SSH and your Opera browser. You might use your SSH connection to get to z/OS and work with USS and perform some configuration actions. You do not use PuTTY to logon to ZOSMF. You should have a ZOSMF server certificate signed by a CA trusted by your browser. This certificate should - probably must - include the DNS name as a subject alternate name. When you make the HTTPS connection from the browser Opera will validate the security of the connection. That will include: 1. Check that it is indeed HTTPS and not HTTP 2. Check for TLS1.2 - lower levels of SSL / TLS are often not allowed these days 3. Check the ZOSMF server certificate Is signed by a CA trusted by Opera 4. Check certificate dates 5. Confirm the DNS you used to reach ZOSMF is named as a subject alternate name Browsers have an icon to click showing why a connection is not secure. It will very likely be one of the steps above. Some browsers allow you to allow connections with an untrusted certificate. That would be a bad security practice but may allow an initial connection. Hope some of this helps. It is generic advice for any browser connection to z/OS. Mike Wawiorko -----Original Message----- From: IBM Mainframe Discussion List <IBM-MAIN@LISTSERV.UA.EDU> On Behalf Of Sean Gleann Sent: 08 June 2020 14:15 To: IBM-MAIN@LISTSERV.UA.EDU Subject: Re: AZD messages? This message originated from outside our organisation and is from web based email - sean.gle...@gmail.com As far as I understand things, 'localhost' is just another way of saying '127.0.0.1' meaning 'this computer', so - yes, localhost is defined. I have an SSH connection defined in PuTTY that associates my local 10443 with the host system's 10443, and I start that connection before attempting to go to https://localhost:10443 in my browser (Opera). I'm quite happy to be shown any error in my understanding, however. But you've sparked off another train of thought, Lloyd. Whilst it's true I get to my z/OSMF with 'https://localhost:10443/zosmf', the very first thing I see is a warning that the connection is not secure and I have to click on 'continue anyway' in order to get to the z/OSMF sign-on screen. I think I've got to sort out *that* problem before trying to go any further. Regards Sean , This e-mail and any attachments are confidential and intended solely for the addressee and may also be privileged or exempt from disclosure under applicable law. If you are not the addressee, or have received this e-mail in error, please notify the sender immediately, delete it from your system and do not copy, disclose or otherwise act upon any part of this e-mail or its attachments. Internet communications are not guaranteed to be secure or virus-free. The Barclays Group does not accept responsibility for any loss arising from unauthorised access to, or interference with, any Internet communications by any third party, or from the transmission of any viruses. Replies to this e-mail may be monitored by the Barclays Group for operational or business reasons. Any opinion or other information in this e-mail or its attachments that does not relate to the business of the Barclays Group is personal to the sender and is not given or endorsed by the Barclays Group. Barclays Execution Services Limited provides support and administrative services across Barclays group. Barclays Execution Services Limited is an appointed representative of Barclays Bank UK plc, Barclays Bank plc and Clydesdale Financial Services Limited. Barclays Bank UK plc and Barclays Bank plc are authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Clydesdale Financial Services Limited is authorised and regulated by the Financial Conduct Authority. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
