How to configure SSL (Secure Sockets Layer) with VANTAGE 12.6 ?
A CA Vantage host can communicate with a Windows client only when both the host and the client are configured to support secure communication.
Follow these steps:
1) Verify that the CA Vantage host is configured according to the instructions in Configure CA Vantage for Secure Communication.
2) Install and configure a TLS/SSL tunneling service as follows:
- Install and configure the service on the computer where the CA Vantage Windows client is installed.
- Copy the self-signed certificate file from the host environment and paste it to a local file.
- Import the certificate to the certificate store as follows:
- Click the Start button and type certmgr.msc in the Search field.
- The MS Windows Certificate Manager starts.
- Provide any requested passwords or confirmations.
- Select Trusted Root Certification Authorities.
- Right-click the Certificates folder and select All Tasks – Import.
- Select the certification authority certificate, and provide the requested information.
- The Certificate Manager imports the certificate.
- Start all components and test the connection.
- The client is configured to communicate securely.
Example: Configure STUNNEL to provide SSL tunneling service between the CA Vantage host and the Windows client
This example configures the open-source tunneling service named STUNNEL to enable the Windows client to connect, via port 1371, to the CA Vantage host named SRM_host that resides at the z/OS server whose IP address is 192.168.1.1.
: Proxy without client authentication
accept = 127.0.0.1:1371
As always, please contact CA Technologies support for CA Vantage if you have further questions.