Re: *SYSTEM certificate store password

Thanks everyone for the responses. I have a PMR open about something else
(emailing from the IBM i to gmail) and that's where the certificate stuff
came in. I finally got IBM to call me on this and they walked me through
some certificate stuff.

The IBMer could not understand how I could use the Mochasoft client and
remotely telnet into our IBM i over port 992 when the certificate that was
there for the telnet server was expired. PC5250 /won't/ work for that.
But it's been that way for as long as I can remember.

Some days I dare to consider myself fairly intelligent, but there are some
things that I just can't seem to get through my head, and this whole
certificate and certificate authority stuff just doesn't seem to click for
me. The last I attempted something with certificates was in 2009 or so.
And the older I get, the more things like that I find.

In any case, there is no issue with 5250 sessions today which is what I was
truly concerned about. I'm working today and the majority of next week,
then taking a few vacation days. And I'm not doing any more on
authenticated email to gmail until I return from vacation the Thursday
after Labor Day.



On Thu, Aug 21, 2014 at 12:06 PM, Nathan Andelin <nandelin@xxxxxxxxx> wrote:

If it was expired, how could Telnet be using it?

The enforcement of an expiration date is up to the Client. I don't know
which or how many clients might enforce an expiration date, but the date is
not relevant to SSL encryption - the format and content of the certificate
is.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.