Configuring the middle-tier Telnet server (IBM Communications Server for Windows example)

The middle-tier server is a Telnet server such as IBM® Communications Server for Windows, that communicates with the Host On Demand client using a TLS/SSL connection with client authentication. The middle-tier server DCAR also communicates with the DCAS on the host. The DCAS and DCAR communicate over a TCP/IP connection using TLS/SSL with client authentication.

To configure the Telnet server, follow these steps:

1. Use the Communications Server for Windows SNA Node Configuration panels to enable the Express Logon Feature and configure the DCAS server address and port.
2. Use the local key management utility to store the client certificate and the DCAS certificate in the local key ring:
   1. Create a key database file.
   2. Create a certificate request or generate a self-signed certificate and associate the certificate with the key ring.
   3. Store the client certificate and the DCAS certificate in the key ring of the server.
3. Use FTP to transmit the DCAR certificate to the z/OS® host and use gskkyman or RACF® Certificate Services to store the DCAR certificate in the DCAS key ring.