TLS v1.2 on z/OS v2.1 using TLSMECHANISM FTP
Posted: Thu May 05, 2016 6:04 pm
Is it possible to use TLS v1.2 when the TLSMECHANISM is FTP or is it only supported when using AT-TLS. My secure FTP job has stopped working since the Windows guys upgraded to TLS v1.2. The same job still works when they downgrade back to TLS v1. I have applied the migration action as required in the z/OS v2.1 Migration guide to turn on SSLV3 in FTP.DATA.
Following are the relevant FTP Data parms:
Thanks,
Johan Cronje
Following are the relevant FTP Data parms:
Code: Select all
EXTENSIONS AUTH_TLS
SECURE_MECHANISM TLS
SSLV3 TRUE
TLSMECHANISM FTP
TLSRFCLEVEL RFC4217
SECURE_CTRLCONN CLEAR
SECURE_DATACONN PRIVATE
CIPHERSUITE SSL_AES_256_SHA
EPSV4 TRUE
PASSIVEDATAPORTS (64400-64600)
TLSTIMEOUT 500
KEYRING FTPx/xxxxkr
Johan Cronje