Technote (FAQ)
Question
Do we need to specify the EKM parm in IECIOSxx for all systems that will be communicating with the ISKLM server for tape drive access to encrypted tapes?
Answer
Yes, but only for in-band key management set-ups is this relevant. In that environment, the SETIOS command needs to be issued on all systems to define the host/port of the ISKLM server. (This is the temporary dynamic equivalent of the permanent IECIOSxx EKM update.)
In other words, it is correct that IECIOSxx needs to be updated on all systems that will require ISKLM services in an in-band key management environment. What this is doing is telling I/O services for each z/OS system where to go looking for encryption keys if required. The keyserver could be on any platform z/OS, Windows, UNIX etc.
Rate this page:
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.