ibm-information-center/dist/eclipse/plugins/i5OS.ic.ddp_5.4.0.1/rbal1sslddm.htm

77 lines
5.2 KiB
HTML
Raw Normal View History

2024-04-02 14:02:31 +00:00
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Secure Sockets Layer for DDM and DRDA" />
<meta name="abstract" content="DB2 Universal Database for iSeries Distributed Relational Database Architecture (DRDA) clients do not support Secure Sockets Layer (SSL)." />
<meta name="description" content="DB2 Universal Database for iSeries Distributed Relational Database Architecture (DRDA) clients do not support Secure Sockets Layer (SSL)." />
<meta name="DC.Relation" scheme="URI" content="rbal1elementsusetcp.htm" />
<meta name="DC.Relation" scheme="URI" content="rbal1reqprog.htm" />
<meta name="DC.Relation" scheme="URI" content="rbal1isreq.htm" />
<meta name="DC.Relation" scheme="URI" content="rbal1ipsecddm.htm" />
<meta name="DC.Relation" scheme="URI" content="../cl/chgddmtcpa.htm" />
<meta name="DC.Relation" scheme="URI" content="../rzain/rzainoverview.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rbal1sslddm" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Secure Sockets Layer for DDM and DRDA</title>
</head>
<body id="rbal1sslddm"><a name="rbal1sslddm"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Secure Sockets Layer for DDM and DRDA</h1>
<div><p>DB2
Universal Database™ for <span class="keyword">iSeries™</span> Distributed
Relational Database Architecture™ (DRDA<sup>®</sup>) clients do not support Secure Sockets
Layer (SSL).</p>
<p>However, similar function is available with Internet Protocol Security
Architecture (IPSec).</p>
<p>The DDM TCP/IP server supports the SSL data encryption protocol. You can
use this protocol to interoperate with clients such as <span class="keyword">iSeries</span> Toolbox
for Java™ and <span class="keyword">iSeries Access Family</span> OLE DB Provider that support
SSL for record-level access, and with any DDM file I/O clients provided by
independent software vendors that might support SSL.</p>
<p>To use SSL with the <span class="keyword">iSeries</span> DDM
TCP/IP server, you must configure the client to connect to the well-known
SSL port 448 on the server.</p>
<p>If you specify PWDRQD(*ENCRYPTED) on the <span class="cmdname">Change DDM TCP/IP Attributes
(CHGDDMTCPA)</span> command on the server, you can use any valid password
along with SSL. This is possible because the server recognizes that the whole
data stream, including the password, is encrypted.</p>
</div>
<div>
<ul class="ullinks">
<li class="ulchildlink"><strong><a href="rbal1reqprog.htm">Required programs</a></strong><br />
You will need to set up and install SSL support.</li>
<li class="ulchildlink"><strong><a href="rbal1isreq.htm">iSeries server requirements</a></strong><br />
For an <span class="keyword">iSeries</span> server
to communicate over SSL, it must be running V4R4 or later of the operating
system, and have the following applications installed: </li>
</ul>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rbal1elementsusetcp.htm" title="DDM and DRDA over native TCP/IP does not use i5/OS communications security services and concepts such as communications devices, modes, secure location attributes, and conversation security levels which are associated with Advanced Program-to-Program Communication (APPC). Therefore, security setup for TCP/IP is quite different.">Elements of security in a TCP/IP network</a></div>
</div>
<div class="relconcepts"><strong>Related concepts</strong><br />
<div><a href="rbal1ipsecddm.htm" title="Internet Protocol Security Architecture (IPSec) is a security protocol in the network layer that provides cryptographic security services. These services support confidential delivery of data over the Internet or intranets.">Internet Protocol Security Architecture for DDM and DRDA</a></div>
<div><a href="../rzain/rzainoverview.htm">Secure Sockets Layer (SSL)</a></div>
</div>
<div class="relref"><strong>Related reference</strong><br />
<div><a href="../cl/chgddmtcpa.htm">Change DDM TCP/IP Attributes (CHGDDMTCPA) command</a></div>
</div>
</div>
</body>
</html>