JCL Statements for Running Applications Using SSL

To create an SSL connection, your user ID must have access to an SAF Key Ring with a user certificate on it. This user certificate must have been signed by a CA certificate that is trusted by the EMS server. This can be accomplished either by signing your certificate with the self-signed root CA from the EMS server distribution, or by importing that CA certificate onto your ring.

An example is provided to show how to use JCL statements to run an application that connects to a TIBCO EMS server by using SSL connection.

//EMSPGM    EXEC PGM=<EMSPGM>
//STEPLIB   DD DISP=SHR,DSN=your.user.loadlib
//... Check the supplied JCL for appropriate certificate files
//... to be included.
//SYSIN
-server    ssl://tibcoBox:7243
-topic     ems.test.dest
-user      Tibco
-password  password
...
-ssl_hostname server
-ssl_ring  EMS_Client_KeyRing
-ssl_label EMS_Client_label
-ssl_proto_tlsv1 enabled

The program uses the user ID Tibco to connect to the TIBCO EMS server running on the machine with the host name tibcoBox with 7243 as the default port. It listens for the ems.test.dest topic.

The program uses an SAF Key Ring client certificate EMS_Client_KeyRing and the Key Ring client certificate label EMS_Client_label. The TLSV1 protocol is enabled.