Sdi tn3270 plus, Adding ssl security to an existing setup, Sdi tn3270 plus, installing – Visara SSL1000 User Manual

B-10

707092-001

SSL1000 User’s Manual

- Define TCP port according to the Mappings defined in the SSL1000.

- Advanced

- Sys Req and Attention keys (used default values)
- TN3270E support (E support is default value)

- NVT (used default values)
- Other (used default values)

•

Expand Security
- General

- SSL/TLS

- Kerberos (used default values)
- SSL/TLS Options

- Version 3
- Negotiate via Telnet (used default value = not selected)
- Close connection if negotiation fails (used default value = not selected)

- User Authentication

- User Certificate Mode
- Select User Certificate

•

Save Session Profile

•

Connect Session to SSL 1000
- File/Connect

Notes on a working Secured Connection/Non-Connection

•

Secured Connection
- See lock symbol on session status line

•

Non-Secured Connection
- If General/SSL/TLS is not selected, it appears that you have a connection (file/

connect is grayed out) but there is no lock symbol.

SDI TN3270 Plus

Adding SSL Security to an existing Setup

Open a session: (Programs\TN3270Plus\TN3270Plus)

•

Setup
- Session Name does not need to change, but you could add words to indicate it is

now using SSL.

-

Host Name

will now be the SSL1000 IP address

-

Telnet Port

will now have to agree with the SSL1000 Mapping (usually can stay

the same if the port was 23 or above 1024…other ports below 1024 cannot be
mapped in the SSL1000)

- Click

Advance

- Security Tab

- For security, choose SSLv3
- Security Certificate
- If ‘Accept Any Invalid Certificate’ is selected, SSL Server Certificate Details

window will not be posted.