System SSL Requirements

As of Release 7.0, TIBCO EMS Client for z/OS (MVS) uses the IBM System SSL facility to create secure connections to the EMS server. To use IBM System SSL, you might need to configure:
  • IBM Integrated Cryptographic Service Facility (ICSF)
  • IBM Resource Access Control Facility (RACF), or a Security Authorization Facility (SAF)-compatible equivalent
  • An SSL Started Task, configured as defined in the IBM System SSL programming guide
To create the security context required by IBM System SSL for TIBCO EMS Clients, you must also be prepared to use RACF or an equivalent product to:
  • Generate and manage digital certificates.
  • Create and manage key rings.
  • Authorize intended users to utilize key rings and certificates.
  • In some cases, configure security to codesign programs and enable users to access code-signed programs.

For more information about the permissions required to use IBM System SSL, see the IBM z/OS Cryptographic Services Integrated Cryptographic Service Facility System Programmer's Guide for your operating system version.

For more information about using IBM System SSL with TIBCO Enterprise Message Service, see the TIBCO Enterprise Message Service C & COBOL API Reference.