[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Suggestions on missing config- Do we need to Crypto access product installed ?

   Yes that is the plan and I have already made that change this morning.
   I have also changed the QSSLPCL to have *SSLV3 in addition to the other
   TLS options.
   https_init(*blanks:*OFF:*ON:*ON:*ON:*ON); � � � ��   I have also approached the software vendor to change their application
   to include 1.26 support and support both TLS and SSL.�   What i am doing in the meantime is a program using the 1.26 version
   that runs after the vendor's application has placed the PLD in the IFS.
   It is a temporary option till they make that change. I was trying to
   figure out what is going on and trying different options to just get
   their system to post to UPS. I think the previous version of HTTPAPI
   1.12 that the vendor has packaged would have also worked had it not
   been for the gsKit issue, but that version will not work when UPS
   migrates their sever to TLS like their development servers.

   On Wed, Dec 24, 2014 at 1:38 PM, Scott Klement <[1]sk@xxxxxxxxxxxxxxxx>
   wrote:

     So, why not enable both SSL and TLS so that it'll work with both
     their development and production servers, and when they do upgrade
     the production servers your program will continue to work?
     On 12/24/2014 12:30 PM, Krish Thirumalai wrote:

     � � I did that specifically because UPS sent me this email when i
     contacted
     � � them regarding the error when i first encountered it.�
     � � "Currently the production servers of Host are setup to only
     receive PLD
     � � files that have SSLv3 enabled. So if the system being used
     does not
     � � have SSLv3 enabled the communication would fail. This would
     also be a
     � � possible reason as to why the connection is timing out. Our
     development
     � � team is still working on the details about when and how the
     server will
     � � be converted from SSLv3 only to TLS. Which at the moment we do
     not have
     � � an ETA for when this will be completed. However the
     development (test)
     � � servers have been converted to TLS connections only. So if you
     attempt
     � � to transmit to the development site with SSLv3 only it would
     fail
     � � because the servers are setup to refuse communication."

   -----------------------------------------------------------------------
   This is the FTPAPI mailing list.� To unsubscribe, please go to:
   [2]http://www.scottklement.com/mailman/listinfo/ftpapi
   -----------------------------------------------------------------------

References

   1. mailto:sk@xxxxxxxxxxxxxxxx
   2. http://www.scottklement.com/mailman/listinfo/ftpapi

-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------