Supporting secure connection on port listener jobs - assure_mimix - 10.0

Assure MIMIX Administrator Reference

Product type
Software
Portfolio
Integrate
Product family
Assure
Product
Assure MIMIX™ Software
Version
10.0
Language
English
Product name
Assure MIMIX
Title
Assure MIMIX Administrator Reference
Copyright
2024
First publish date
1999
Last edition
2024-08-27
Last publish date
2024-08-27T12:04:03.662993
MIMIX now allows secure connections for port listener jobs and provides secure connection status tracking. MIMIX supports two communication modes of operation for the port jobs within the specified instance:
  • Secured (*SECURE): Transport Level Security level 1.2 (TLS 1.2) or higher is used for port job initiated communications. Using *SECURE communication requires that the IBM system values related to TLS are set appropriately to enable secure communication between MIMIX nodes. Below are the IBM system values:
    • QSSLCSL *SEC Secure sockets layer cipher specification list
    • QSSLCSLCTL *SEC Secure sockets layer cipher control
    • QSSLPCL *SEC Secure sockets layer protocols
  • Unsecured (*UNSECURED): No additional security protocols are used for port job initiated communications.
Setting the mode to *SECURE ensures that data transfers are encrypted and that all communications are limited to MIMIX executing on configured nodes within the MIMIX instance. Setting the mode to support both *UNSECURED and *SECURE indicates that nodes in the instance will attempt secure connections, resulting in encrypted data being sent. However, if the secure handshake protocol fails, connection will be attempted again with an unsecure connection. This allows MIMIX to continue operating and protecting your data when secure communications fail.
Note: To enable the secure port connection for your operating system level, you need have the following PTFs:
  • IBM i 7.3: SI84768 MF70789
  • IBM i 7.4: SI84767 MF70790
  • IBM i 7.5: SI84650
If you do not have the PTFs (or a PTF that replaces them), you will be unable to select *SECURE for the policy.