Additional Configuration Options
You can configure special-purpose remote node records to perform the following functions:
- Validate certificates using External Authentication Server
- Allow for secure TCP API connections (TLS and SSL)
- Secure passwords at rest within the IBM® Connect:Direct® TCQ and AUTH files
With the SSL and TLS protocols, you can validate certificates using the External Authentication Server application. To use External Authentication Server, configure your application to connect to the host name and port where the External Authentication Server application (.EASERVER) resides. Specify a certificate validation definition. For configuration instructions, see Adding a Remote Node Record for the External Authentication Server.
Use only secure TCP API connections to connect to a IBM Connect:Direct for z/OS® server. For configuration instructions, see Establishing Secure TCP API Connections to a IBM Connect:Direct Secure Plus-Enabled Server.
In IBM Connect:Direct, passwords can be used in IBM Connect:Direct when Processes are submitted, during API signons. and when the AUTH file is maintained. You can use Strong Password Encryption SPE) to secure passwords at rest within the IBM Connect:Direct TCQ and AUTH files. See Implementing Strong Password Encryption.