DB2 Universal Database™ for iSeries™ Distributed Relational Database Architecture™ (DRDA®) clients do not support Secure Sockets Layer (SSL).
However, similar function is available with Internet Protocol Security Architecture (IPSec).
The DDM TCP/IP server supports the SSL data encryption protocol. You can use this protocol to interoperate with clients such as iSeries Toolbox for Java™ and iSeries Access Family OLE DB Provider that support SSL for record-level access, and with any DDM file I/O clients provided by independent software vendors that might support SSL.
To use SSL with the iSeries DDM TCP/IP server, you must configure the client to connect to the well-known SSL port 448 on the server.
If you specify PWDRQD(*ENCRYPTED) on the Change DDM TCP/IP Attributes (CHGDDMTCPA) command on the server, you can use any valid password along with SSL. This is possible because the server recognizes that the whole data stream, including the password, is encrypted.