Customizing System SSL
To use a secured environment for EMS ESB in Substation ES, you must be familiar with the IBM System SSL environment. To ensure that the System SSL environment meets your local security requirements, you have to customize the existing System SSL environment.
The following three sections includes a broad outline of steps to take or items to check when reviewing the System SSL environment. However, every system has unique requirements that cannot be fully addressed in this outline.
Additionally, this outline is limited to IBM Security Server (RACF). If you want to use an equivalent security product from another vendor, you can see the related product documentation for guidance.
- Customization
To ensure a secure system SSL environment, you have to check and if necessary configure IBM Integrated Cryptographic Support Facility (ICSF). - RACF FACILITY Class
If you are assigned the tasks of administering certificates and key rings, you must have the necessary authority levels granted in the FACILITY class profiles. - Signature Verification
Signature verification, also known as module verification, is only required to support FIPS mode and can optionally be ignored for non-FIPS mode operations.
Copyright © Cloud Software Group, Inc. All rights reserved.