The default certificates and settings provided during the agent installation let you set up SSL FTP without generating your own certificates and settings.
To set up SSL FTP using the default certificates and settings
security.overridePropertiesFile=true
The JVM uses the customized java.security file that is installed with the agent. This value allows the JVM to use the java.security provided with the agent for its own communications, but does not affect other instances of the JVM for other applications on the i5/OS system. Without defining this property the i5/OS agent will not be able to use SSL.
jre\bin\keytool -export -alias agent -file key.cer -keystore serverkeystore
You are prompted for a password. The default password is cyberuser.
Note: You require the alias “agent” to ensure you use the certificate provided by the agent.
D:\agent\R6SP2>jre\bin\keytool -import -file key.cer -keystore cacerts Enter keystore password: changeit Owner: CN=cyberuser, OU=ESP System Agent, O=Cyber, L=Markham, ST=Ont, C=CA Issuer: CN=cyberuser, OU=ESP System Agent, O=Cyber, L=Markham, ST=Ont, C=CA Serial number: 4152d5dc Valid from: Thu Apr 21 09:55:40 EDT 2005 until: Mon Jun 05 09:55:40 EDT 2006 Certificate fingerprints: MD5: 74:F2:17:20:B6:B0:10:AE:AC:88:9A:BA:AA:3A:6D:73 SHA1:4C:88:B6:39:64:65:98:AD:3E:1E:33:05:12:13:9C:4A:F4:4E:E7 :FA Trust this certificate? [no]: yes Certificate was added to keystore
Note: If another agent acts as an FTP client, start that agent as well.
|
Copyright © 2010 CA.
All rights reserved.
|
|