ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaiq_5.4.0.1/rzaiqspfylocalca.htm

64 lines
4.0 KiB
HTML

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Specify MyCo's local CA as a trusted CA for TheirCo's FTP client" />
<meta name="DC.Relation" scheme="URI" content="rzaiqscenariossldetails.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2004, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2004, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzaiqspfylocalca" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Specify MyCo's local CA as a trusted CA for TheirCo's FTP client</title>
</head>
<body id="rzaiqspfylocalca"><a name="rzaiqspfylocalca"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Specify MyCo's local CA as a trusted CA for TheirCo's FTP client</h1>
<div><div class="section"><p>Before TheirCo can use the File Transfer Protocol (FTP) client
to make secure connections to the MyCo FTP server, TheirCo must use Digital
Certificate Manager (DCM) to specify which Certificate Authorities the client
should trust. This means that TheirCo must specify that the local CA certificate
that was imported previously is to be trusted.</p>
<p>TheirCo uses the following
steps to specify that their FTP client should trust MyCo's local CA certificate:</p>
</div>
<ol><li><span>Start DCM.</span></li>
<li><span>Click <span class="uicontrol">Select a Certificate Store</span> and select
*SYSTEM as the certificate store to open.</span></li>
<li><span>When the Certificate Store and Password page displays, provide
the password that was specified for the certificate store when it was created,
and click <span class="uicontrol">Continue</span>.</span></li>
<li><span>In the navigation frame, select <span class="uicontrol">Manage Applications</span> to
display a list of tasks.</span></li>
<li><span>From the task list, select <span class="uicontrol">Define CA trust list</span>.</span></li>
<li><span>Select <span class="uicontrol">Client</span> as the type of application
for which you want to define the list and click <span class="uicontrol">Continue</span>.</span></li>
<li><span>Select the i5/OS™ TCP/IP FTP Client application (QIBM_QTMF_FTP_CLIENT)
from the list and click <span class="uicontrol">Continue</span> to display a list
of CA certificates.</span></li>
<li><span>Select MyCo's local CA certificate that was imported previously
and click <span class="uicontrol">OK</span>. DCM displays a message to confirm the
trust list selection.</span></li>
</ol>
<div class="section">With these steps complete, MyCo's FTP server can establish an SSL
session with TheirCo's FTP client and server. Refer to <a href="rzaiqtlsssl.htm#rzaiqtlsssl">Secure the FTP client with Transport Layer Security or Secure Socket Layer</a>.</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzaiqscenariossldetails.htm" title="In order to secure File Transfer Protocol (FTP) with Secure Sockets Layer (SSL), you need to configure the server.">Configuration details</a></div>
</div>
</div>
</body>
</html>