SSL, Telnet and I

[Thad Rizzi]

I recently set up SSL for one of my iSeries servers (V5R4). I created
a certificate and assinged the Telnet application to the cert. Then
using Navigator I downloaded the Certificate Authority to my PC,
configured iSeries Access for SSL and connected using SSL.

Now however, I can't telent into that iSeries from another iSeries
using the command line. Any ideas on what I need to do next? The
telnet server is configured to only use secure connections and I want
to keep it that way.

Any help is appreciated,

Thad Rizzi

[Jonathan Ball]

The TELNET command has a PORT parameter that defaults to *DFT, which is
well-known port 23. Unless you changed something in activating SSL,
telnet is probably listening on port 992. So, when you try to telnet
from another iSeries, you need to specify:

telnet rmtsys(rmtiseries.mycompany.com) port(992)

or whatever port you're listening on on the target iSeries.

[Thad Rizzi]

That didn't work for me. Telenet is set to use 992 for SSL but when I
tried telnet rmtsys(rmtiseries.mycompany.com) port(992) it timed out.
Looks like I have a lot to research on the whole SSL topic. Can
anyone suggest any good literature?

[Hal]

> That didn't work for me.  Telenet is set to use 992 for SSL but when I
> tried telnet rmtsys(rmtiseries.mycompany.com) port(992) it timed out.
> Looks like I have a lot to research on the whole SSL topic.  Can
> anyone suggest any good literature?

The telnet command built into i5/0S does not support SSL as far as I
am aware. Going from one iSeries box to another you'll need to go via
regular telnet on port 23, or download yourself a copy of mochasoft
and go straight to box#2 from your computer instead of trying to pass
through from one to the other.

Chris

[fords...@gmail.com]

IBM appear to have made a PTF to enable SSL in the telnet client at
V5R4 and up. The V5R4 PTF is SI32220 (now superseded by SI33240).
Haven't tried it myself though.

Mark.