Encrypted substitute password configuration

The end user types their name and password in the BlueZone Session Configuration. Upon connection, a negotiation takes place that sends this password securely to the iSeries, bypassing the main iSeries Sign on Screen. This is especially useful on Local Area Networks where data encryption is not required, but sending passwords in the clear is not desirable.

It can be used when you want to make the sign on process easier or perhaps if you want to provide public access to an iSeries host where it is not desirable or necessary to have end users enter a User Name and Password to gain access. It also can be used to "force" an encrypted sign on by presenting end users with a user name and password dialog box.

Use the Display tab in the TN5250E properties dialog to configure the sign on bypass values as shown. The Program to Call, Initial Menu and Current Library values are optional.

Figure 10: Display tab

Important

If the sign on bypass fails, the user will be taken to the main iSeries login screen. This will defeat the purpose of Encrypted Substitute Password because the end user will be able to sign on and send their password in the clear. To prevent this, an "exit" program should be used so that if an end user signs off, the iSeries will automatically force BlueZone to disconnect from the host.

As an option, you can choose to use the force encrypted sign on feature by selecting the Force Encrypted Signon check box.

When you are using the force encrypted sign on feature, the end user will be presented with a login dialog box each time they launch a BlueZone iSeries Display session.

Refer to the BlueZone Display and Printer Help for more information about configuring the iSeries sign on parameters.