You can set up CA CSM to support the ability to deploy products to remote systems using FTP over TLS (Transport Layer Security). This feature allows for data to be exchanged in a secure, encrypted manner.
This feature uses X.509 digital certificates.
Certificates can be read from a security manager (CA Top Secret for z/OS, CA ACF2 for z/OS, or IBM RACF) using SAF key rings, or from USS Java key stores. In addition, CA CSM provides support for sites that use the IBM Integrated Cryptographic Service Facility (ICSF) for hardware certificate management.
The following table summarizes the available key store types that CA CSM supports:
|
Storage |
Certificate Management |
Key Stores |
|---|---|---|
|
Security Manager |
Software |
JCERACFKS |
|
Security Manager |
Hardware |
JCECCARACFKS |
|
USS |
Software |
JKS, JCEKS, PKCS12 |
|
USS |
Hardware |
JCECCAKS |
Note: For more information about key store types available under Java, see the Security Reference for IBM SDK, Java Technology Edition.
Follow these steps:
The Deployed Software page opens.
The fields in the section appear. The fields vary depending on the selected key store type.
A dialog that shows the progress of the task opens. When the task completes, you can click Show Results on the Progress tab to close this dialog. The task output browser opens and you can view the action details. Click Close to close the task output browser.
Note: While a task is in progress, you can perform other work. You can click Hide to exit the dialog and view the task status later on the Tasks tab.
The FTP connection settings are saved.
The FTP location with secured FTP transmission enabled is added.
You can now deploy products using FTP over TLS.
Note: For more information about adding an FTP location, see the online help.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|