Specifying MyCo's local CA as a trusted CA for TheirCo's FTP client

 

Before TheirCo can use the File Transfer Protocol (FTP) client to make secure connections to the MyCo FTP server, TheirCo must use Digital Certificate Manager (DCM) to specify which certificate authorities (CA) the client should trust. This means that TheirCo must specify that the local CA certificate that was imported previously is to be trusted.

TheirCo uses the following steps to specify that their FTP client should trust MyCo's local CA certificate:

  1. Start DCM.

  2. Click Select a Certificate Store and select *SYSTEM as the certificate store to open.

  3. When the Certificate Store and Password page displays, provide the password that was specified for the certificate store when it was created, and click Continue.

  4. In the navigation frame, select Manage Applications to display a list of tasks.

  5. From the task list, select Define CA trust list.

  6. Select Client as the type of application for which you want to define the list and click Continue.

  7. Select the i5/OS® TCP/IP FTP client application (QIBM_QTMF_FTP_CLIENT) from the list and click Continue to display a list of CA certificates.

  8. Select MyCo's local CA certificate that was imported previously and click OK. DCM displays a message to confirm the trust list selection.
With these steps complete, MyCo's FTP server can establish an SSL session with TheirCo's FTP client and server.

 

Parent topic:

Configuration details

Related concepts
Securing FTP clients with Transport Layer Security or Secure Sockets Layer