ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaiw_5.4.0.1/rzaiwssltel.htm

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
  PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Configure SSL on the Telnet server" />
<meta name="abstract" content="Use this topic to set up SSL on your iSeries server." />
<meta name="description" content="Use this topic to set up SSL on your iSeries server." />
<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslparent.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwremportrest.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslcert.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslclientauth.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslenable.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwtroubles.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwrzaiwsslinit.htm" />
<meta name="DC.Relation" scheme="URI" content="rzaiwchksys.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1998, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzaiwssltel" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Configure SSL on the Telnet server</title>
</head>
<body id="rzaiwssltel"><a name="rzaiwssltel"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Configure SSL on the Telnet server</h1>
<div><p>Use this topic to set up SSL on your iSeries™ server.</p>
<div class="section"><p>You can configure the i5/OS<sup>®</sup> Telnet server to secure sessions
with SSL. The most important factor to consider when enabling SSL on the Telnet
server is the sensitivity of the information that is involved in client sessions.
If the information is sensitive, or private, then securing the iSeries Telnet
server with SSL is recommended.</p>
<p>To configure SSL on the Telnet server,
follow these steps:</p>
</div>
<ol><li class="stepexpand"><span>Install the following software to support Telnet SSL and to manage
digital certificates:</span> <ul><li>TCP/IP Connectivity Utilities for iSeries, 5722-TC1</li>
<li>Digital Certificate Manager, 5722-SS1 - Boss Option 34</li>
<li>IBM<sup>®</sup> HTTP
Server for iSeries,
5722-DG1</li>
<li>Developer Kit for Java™, 5722-JV1</li>
</ul>
</li>
<li class="stepexpand"><span>Ensure that you have removed port restrictions and allowed SSL
to start.</span></li>
<li class="stepexpand"><span>Assign a certificate to the Telnet server.</span></li>
<li class="stepexpand"><span>Enable client authentication for the Telnet server (optional step). </span></li>
<li class="stepexpand"><span>Enable SSL on the Telnet server.</span></li>
<li class="stepexpand"><span>Start the Telnet server.</span></li>
</ol>
<div class="section"><p>For additional information about solving SSL problems related to
Telnet server, see Troubleshooting your Telnet SSL server. Sometimes understanding
what goes on during SSL processing can also help you determine where a problem
might have occurred. Review SSL initialization and handshake for more information
about SSL processing.</p>
</div>
</div>
<div>
<ol>
<li class="olchildlink"><a href="rzaiwremportrest.htm">Remove port restrictions</a><br />
In releases before V5R1, port restrictions were used because Secure Sockets Layer (SSL) support was not available for Telnet. Now you can specify whether SSL, non-SSL, or both are to start. Therefore, there is no longer a need for port restrictions.</li>
<li class="olchildlink"><a href="rzaiwconfiguresslcert.htm">Assign a certificate to the Telnet server</a><br />
When you enable the Telnet server on your system to use SSL, you
can establish secure Telnet connections to your system from iSeries Access
for Windows<sup>®</sup> or
from any other SSL-enabled Telnet client, such as a Personal Communications
emulator.</li>
<li class="olchildlink"><a href="rzaiwconfiguresslclientauth.htm">Enable client authentication for the Telnet server</a><br />
The Telnet server supports the authentication of Telnet client certificates. This means that during the SSL handshake, not only will the server generate a server certificate for the client, but also can optionally check for a valid client certificate depending on how Digital Certificate Manager (DCM) is configured.</li>
<li class="olchildlink"><a href="rzaiwconfiguresslenable.htm">Enable SSL on the Telnet server</a><br />
<span>You can use this topic to understand how to
enable SSL on the Telnet server.</span></li>
</ol>

<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzaiwconfiguresslparent.htm" title="With the Secure Sockets Layer (SSL) protocol, you can establish secure connections between the Telnet server application and Telnet clients that provide authentication of one or both endpoints of the communication session. SSL also provides privacy and integrity of the data that client and server applications exchange.">Secure Telnet with SSL</a></div>
</div>
<div class="relconcepts"><strong>Related concepts</strong><br />
<div><a href="rzaiwrzaiwsslinit.htm" title="You can read in this topic for details about the interactions between Telnet servers, clients, and SSL.">SSL initialization and handshake</a></div>
</div>
<div class="reltasks"><strong>Related tasks</strong><br />
<div><a href="rzaiwtroubles.htm" title="This topic gives you detailed information about troubleshooting your SSL server including system SSL return codes and a list of common SSL problems.">Troubleshoot your Telnet SSL server</a></div>
<div><a href="rzaiwchksys.htm" title="This topic lists the steps necessary to learn steps to follow to check system status.">Check system status</a></div>
</div>
</div>
</body>
</html>
Add readme and dist folders 2024-04-02 14:02:31 +00:00			`<?xml version="1.0" encoding="UTF-8"?>`
			`<!DOCTYPE html`
			`PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">`
			`<html lang="en-us" xml:lang="en-us">`
			`<head>`
			`<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />`
			`<meta name="security" content="public" />`
			`<meta name="Robots" content="index,follow" />`
			`<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />`
			`<meta name="DC.Type" content="task" />`
			`<meta name="DC.Title" content="Configure SSL on the Telnet server" />`
			`<meta name="abstract" content="Use this topic to set up SSL on your iSeries server." />`
			`<meta name="description" content="Use this topic to set up SSL on your iSeries server." />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslparent.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwremportrest.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslcert.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslclientauth.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwconfiguresslenable.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwtroubles.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwrzaiwsslinit.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzaiwchksys.htm" />`
			`<meta name="copyright" content="(C) Copyright IBM Corporation 1998, 2006" />`
			`<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 1998, 2006" />`
			`<meta name="DC.Format" content="XHTML" />`
			`<meta name="DC.Identifier" content="rzaiwssltel" />`
			`<meta name="DC.Language" content="en-us" />`
			`<!-- All rights reserved. Licensed Materials Property of IBM -->`
			`<!-- US Government Users Restricted Rights -->`
			`<!-- Use, duplication or disclosure restricted by -->`
			`<!-- GSA ADP Schedule Contract with IBM Corp. -->`
			`<link rel="stylesheet" type="text/css" href="./ibmdita.css" />`
			`<link rel="stylesheet" type="text/css" href="./ic.css" />`
			`<title>Configure SSL on the Telnet server</title>`
			`</head>`
			`<body id="rzaiwssltel"><a name="rzaiwssltel"><!-- --></a>`
			`<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>`
			`<h1 class="topictitle1">Configure SSL on the Telnet server</h1>`
			`<div><p>Use this topic to set up SSL on your iSeries™ server.</p>`
			`<div class="section"><p>You can configure the i5/OS<sup>®</sup> Telnet server to secure sessions`
			`with SSL. The most important factor to consider when enabling SSL on the Telnet`
			`server is the sensitivity of the information that is involved in client sessions.`
			`If the information is sensitive, or private, then securing the iSeries Telnet`
			`server with SSL is recommended.</p>`
			`<p>To configure SSL on the Telnet server,`
			`follow these steps:</p>`
			`</div>`
			`<ol><li class="stepexpand"><span>Install the following software to support Telnet SSL and to manage`
			`digital certificates:</span> <ul><li>TCP/IP Connectivity Utilities for iSeries, 5722-TC1</li>`
			`<li>Digital Certificate Manager, 5722-SS1 - Boss Option 34</li>`
			`<li>IBM<sup>®</sup> HTTP`
			`Server for iSeries,`
			`5722-DG1</li>`
			`<li>Developer Kit for Java™, 5722-JV1</li>`
			`</ul>`
			`</li>`
			`<li class="stepexpand"><span>Ensure that you have removed port restrictions and allowed SSL`
			`to start.</span></li>`
			`<li class="stepexpand"><span>Assign a certificate to the Telnet server.</span></li>`
			`<li class="stepexpand"><span>Enable client authentication for the Telnet server (optional step). </span></li>`
			`<li class="stepexpand"><span>Enable SSL on the Telnet server.</span></li>`
			`<li class="stepexpand"><span>Start the Telnet server.</span></li>`
			`</ol>`
			`<div class="section"><p>For additional information about solving SSL problems related to`
			`Telnet server, see Troubleshooting your Telnet SSL server. Sometimes understanding`
			`what goes on during SSL processing can also help you determine where a problem`
			`might have occurred. Review SSL initialization and handshake for more information`
			`about SSL processing.</p>`
			`</div>`
			`</div>`
			`<div>`
			`<ol>`
			`<li class="olchildlink"><a href="rzaiwremportrest.htm">Remove port restrictions</a><br />`
			`In releases before V5R1, port restrictions were used because Secure Sockets Layer (SSL) support was not available for Telnet. Now you can specify whether SSL, non-SSL, or both are to start. Therefore, there is no longer a need for port restrictions.</li>`
			`<li class="olchildlink"><a href="rzaiwconfiguresslcert.htm">Assign a certificate to the Telnet server</a><br />`
			`When you enable the Telnet server on your system to use SSL, you`
			`can establish secure Telnet connections to your system from iSeries Access`
			`for Windows<sup>®</sup> or`
			`from any other SSL-enabled Telnet client, such as a Personal Communications`
			`emulator.</li>`
			`<li class="olchildlink"><a href="rzaiwconfiguresslclientauth.htm">Enable client authentication for the Telnet server</a><br />`
			`The Telnet server supports the authentication of Telnet client certificates. This means that during the SSL handshake, not only will the server generate a server certificate for the client, but also can optionally check for a valid client certificate depending on how Digital Certificate Manager (DCM) is configured.</li>`
			`<li class="olchildlink"><a href="rzaiwconfiguresslenable.htm">Enable SSL on the Telnet server</a><br />`
			`<span>You can use this topic to understand how to`
			`enable SSL on the Telnet server.</span></li>`
			`</ol>`

			`<div class="familylinks">`
			`<div class="parentlink"><strong>Parent topic:</strong> <a href="rzaiwconfiguresslparent.htm" title="With the Secure Sockets Layer (SSL) protocol, you can establish secure connections between the Telnet server application and Telnet clients that provide authentication of one or both endpoints of the communication session. SSL also provides privacy and integrity of the data that client and server applications exchange.">Secure Telnet with SSL</a></div>`
			`</div>`
			`<div class="relconcepts"><strong>Related concepts</strong><br />`
			`<div><a href="rzaiwrzaiwsslinit.htm" title="You can read in this topic for details about the interactions between Telnet servers, clients, and SSL.">SSL initialization and handshake</a></div>`
			`</div>`
			`<div class="reltasks"><strong>Related tasks</strong><br />`
			`<div><a href="rzaiwtroubles.htm" title="This topic gives you detailed information about troubleshooting your SSL server including system SSL return codes and a list of common SSL problems.">Troubleshoot your Telnet SSL server</a></div>`
			`<div><a href="rzaiwchksys.htm" title="This topic lists the steps necessary to learn steps to follow to check system status.">Check system status</a></div>`
			`</div>`
			`</div>`
			`</body>`
			`</html>`