This parameter specifies the requested list of ciphers that are to encrypt the password fields for locally initiated transfers.
The field added to the Edit Transfer Record screen for Transmission Password Encryption Cipher Selection.
Specifies the requested list of ciphers which are used to encrypt the password fields for locally initiated transfers.
Fields added to the Global Parameters screen for Transmission Password Encryption Cipher Selection.
Specifies the Default list of ciphers which are used to encrypt the password fields for locally initiated transfers.
Specifies the permitted list of ciphers which are used to encrypt the password fields for remotely initiated transfers.
Specifies the size (in bits) of the prime number that is used during DH (Diffie-Hellman) exchange for remotely initiated transfers or meta-transfers. The exchanged value generates the key that is used to encrypt the password fields transmitted in the CA XCOM Data Transport header.
This section describes the new and changed messages to support this enhancement.
New messages for Transmission Password Encryption Cipher Selection.
Reason:
This message is issued if the XCOM Ping action is performed with TRNENCRL_CIPHER value set to COMPAT.
Action:
Retry XCOM Ping action with TRNENCRL_CIPHER value set to cipher(s) other than COMPAT. See the list of ciphers allowed for TRNENCRL_CIPHER in the List of Parameters in this guide.
Reason:
An error was detected while attempting to send a discovery request. Possible reason could be the failure of Xrcvwt.
Action:
Check the Network connectivity and retry the transfer.
Reason:
Possible reason could be one of the following:
Action:
Depends on reason.
For the first four reasons, check the network connectivity and retry the transfer.
If the cipher match is not found, recheck the Local and Remote cipher preferences set in xcom.glb. Refer to How Transmission Password Encryption Works for more information about how to set the (STC)TRNENCRL_CIPHER/TRNENCRR_CIPHER parameters.
If ETPKI (CAPKI) Initialization fails, check whether the ETPKI (CAPKI) Library is installed properly and that the CAPKIHOME global parameter is set to the correct value.
.
Reason:
This error is produced when required arguments are not supplied to the ping request.
Action:
Provide required arguments to the ping request.
Reason:
This error is produced when TRNENCRR_CIPHER on remote XCOM Server does not have COMPAT in the list of ciphers and
Action:
Add COMPAT to the TRNENCRR_CIPHER global parameter on remote XCOM server to permit the CA XCOM Data Transport proprietary cipher without cipher negotiation that is required for backward password compatibility with CA XCOM Data Transport versions before 11.6.
or
Choose different cipher for TRNENCRL_CIPHER other than COMPAT, in order to encrypt the password when in flight.
Reason:
Possible reason could be one of the following:
Action:
Depends on reason.
If the cipher match is not found, recheck the Local and Remote cipher preferences set in xcom.glb. Refer to How Transmission Password Encryption Works for more information.
Recheck the remote partner cipher preferences. Refer to How Transmission Password Encryption Works for more information about how to set (STC)TRNENCRL_CIPHER/TRNENCRR_CIPHER parameters.
Check whether ETPKI (CAPKI) Library is installed properly and CAPKIHOME global parameter is set to the correct value.
|
Copyright © 2013 CA.
All rights reserved.
|
|