IBM has implemented the function to download PTFs for the IBM i, from the Fix Central FTP site using secure FTP. This new function will allow customers to use the FTP server in a secure fashion. The un-secure method of FTP PTF download is no longer available as of Saturday, July 17th, 2021.
The Fix Central team and the IBM i iGSC have updated the way that PTF orders are obtained from the Fix Central FTP site. This site is now using the secure FTP options for the IBM i customers to download PTFs from that site. This option is only used when you (the customer) select the option for ordering PTFs and have them sent to the FTP site using this option:
After you have selected this option, you will receive emails with the order number, the user ID and the password, which you must use in order to download the order from the FTP site. The previous FTP method of using “ANONYMOUS” as your user ID to sign onto the FTP server has been eliminated and is no longer available. The new function requires you to sign in using your user ID and password which will be provided in the emails, in order to download PTFs that were ordered in the above fashion. In addition to using this user ID and password, you will be required to have set up secure FTP on your IBM i system.
When you use the method of sending your IBM i PTFs to the FTP server as your delivery method, you will receive the 3 emails. The first email will still essentially be the one that says that your order has been received. The second and third emails will contain the information that will be needed such as your user ID, Password and information for you to use to download these PTFs from the server.
You will need to set up your IBM i system as the client to which Secure FTP or FTP and SSL will be used to download PTFs. You may need to understand and use Digital Certificate Manager (DCM), creating a Digital Certificate Store which holds your certificates; setting up the IBM i as the secure client to which the PTFs will be downloaded. Below are links to documents which may be of help in answering questions you might have.
These tools are for setting up FTPS:
In order to use the instructions in the document SSL FTP Client Configuration, you will need to download both of the certificate authorities from the compressed file. ca.zip (https://www.ibm.com/support/pages/system/files/inline-files/ca.zip)
The following document includes steps to configure the IBM i, FTP client to use SSL: https://www.ibm.com/support/pages/node/6475697
The following document includes steps and answers to questions on the use of DCM: Digital Certificate Manager (DCM) - Frequently Asked Questions and Common Tasks
These tools are for setting up SFTP:
NOTE: These tools are as-is tools and are not supported by the IBM i iGSC.
This link takes you to a document with steps for setting up SFTP using the PuTTY tool: Instructions for setting up SFTP for use in downloading PTFs from Fix Central to the IBM i.
- IBM bulk FTPS method for Fix Central is referenced by 2 hostnames: delivery01-bld.dhe.ibm.com and delivery01-mul.dhe.ibm.com. Customer's firewall teams will need to be aware of those 2 hostnames.
- Additional questions may be answered in the documentation under the section titled: What does my firewall team need to know?
Note: The following example uses FileZilla as the FTP client. This is a freeware product not supported by IBM. Use an FTP client of your choice.
INFORMATION YOU WILL NEED TO RETRIEVE YOUR ORDER
FTP Server --> delivery01-bld.dhe.ibm.com
Transfer type --> ascii/binary
Directory on server --> 12304423/C
Files to get --> ftpSI76515.txt
So now on the FileZilla screen: enter the FTP server in the space for the Host, the username provided in the second email, password provided in the third email and specify port 22 (21 and 990 may also work). Then click quick connect and you should end up with the following screen:
26 August 2021