Setting up IBM i to use SSL

To set up your system to use SSL with IBM® Toolbox for Java™, complete the following steps.

  1. Get and configure the server certificate.
  2. Apply the certificate to the following systems that are used by IBM Toolbox for Java:
    • QIBM_OS400_QZBS_SVR_CENTRAL
    • QIBM_OS400_QZBS_SVR_DATABASE
    • QIBM_OS400_QZBS_SVR_DTAQ
    • QIBM_OS400_QZBS_SVR_NETPRT
    • QIBM_OS400_QZBS_SVR_RMTCMD
    • QIBM_OS400_QZBS_SVR_SIGNON
    • QIBM_OS400_QZBS_SVR_FILE
    • QIBM_OS400_QRW_SVR_DDM_DRDA

Getting and configuring server certificates

Before you get and configure your server certificate, you need to install the following products:

The process you follow to get and configure your server certificate depends on the kind of certificate you use:

  • If you get a certificate from a trusted authority (such as VeriSign, Inc., or RSA Data Security, Inc.), install the certificate on the system then apply it to the host servers.
  • If you choose not to use a certificate from a trusted authority, you can build your own certificate to be used on the system. Build the certificate by using Digital Certificate Manager:
    1. Create the certificate authority on the system. See the Information Center topic Acting as your own CA.
    2. Create a system certificate from the certificate authority that you created.
    3. Assign which host servers will use the system certificate that you created.