Working with the Secure Sockets Layer (SSL) on z/OS

This chapter describes how you set up and work with the Secure Sockets Layer (SSL) on z/OS(R). The operations you can perform are:

Each section includes examples of performing each task using RACF(R). You can perform similar tasks using the other external security managers.

On z/OS, you must also set the number of server subtasks that each queue manager uses for processing SSL calls, as described in Setting the SSLTASKS parameter.

z/OS SSL support is integral to the operating system, and is known as System SSL. System SSL is part of the Cryptographic Services Base element of z/OS. The Cryptographic Services Base members are installed in the pdsname.SGSKLOAD partitioned data set (PDS). When you install System SSL, ensure that you choose the appropriate options to provide the CipherSpecs you require.