When using AT-TLS, how do I implement secure session reuse for FTP?

Question & Answer

Question

Answer

When you use the TLSMECHANISM statement with the TTLS parameter specified, the GSK_V3_SESSION_TIMEOUT statement in the relevant TTLSGskAdvancedParms statement configures how long SSL sessions remain in the cache.

When FTP is using TLSMECHANISM TTLS, the SECURE_SESSION_REUSE option requires:

The policy for the data connection must map to the same TTLSGroupAction and TTLSEnvironmentAction blocks as the control connection.
The GSK_V3_SESSION_TIMEOUT value in the TTLSGskAdvancedParms block for the associated policy be non-zero and larger than the time between establishment of the control connection and the new data connection. The default value is 86400 seconds (one day).
That the client requests it (SECURE_SESSION_REUSE REQUIRED) and the server accepts it (SECURE_SESSION_REUSE ALLOWED). Otherwise it does a full SSL handshake.

[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSSN3L","label":"z\/OS Communications Server"},"Platform":[{"code":"PF035","label":"z\/OS"}],"Component":"","Version":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]

Product Synonym

ZOSCS COMMSERVER

Was this topic helpful?

Document Information

Modified date:
30 October 2017

UID

dwa1409989

Tips

When using AT-TLS, how do I implement secure session reuse for FTP?

Question & Answer

Question

Answer

Product Synonym

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?