Generating SSL Certificates › Configure the Client

Configure the Client

When you configure the client, you enable the CA XCOM Data Transport client to use the CA certificate and the server certificate when establishing client (local) SSL connections.

To configure the client

1. Review and modify the settings of the CA XCOM Data Transport SSL configuration file, configssl.cnf, as appropriate for your system. Client connections use the INITIATE_SIDE values.
2. Point the XCOM_CONFIG_SSL parameter in your CONFIG member/global file to your customized configssl.cnf file.

   Note: For z/OS, the path and file name must be an HFS file.

   • For z/OS, the XCOM_CONFIG_SSL parameter can also be specified as a destination member parameter.
   • For UNIX and Windows, the XCOM_CONFIG_SSL parameter can also be specified in your configuration (cnf) file.
3. Set the SECURE_SOCKET parameter to YES to indicate an SSL connection.
   • For z/OS, specify the SECURE_SOCKET parameter in the SYSIN01, the destination member, or the CONFIG member.
   • For UNIX and Windows, specify the SECURE_SOCKET parameter in the configuration (cnf) file.
4. Specify the port through which the remote CA XCOM Data Transport partner accepts SSL connections. Use one of the following parameters:
   • PORT for UNIX and Windows
   • IPPORT for z/OS
5. Initiate the transfer request.

Notes:

• CA XCOM Data Transport uses the OpenSSL toolset. The configssl.cnf file is used by CA XCOM Data Transport to configure OpenSSL.
• Set the XCOM_CONFIG_SSL parameter in your CONFIG member/global file to point to your customized configssl.cnf file.