Connecting to host systemsBlueZone Mainframe Display and PrinterCreating BlueZone Mainframe Display or Printer connectionsTN3270E PropertiesCertificate tab

Certificate tab

Client Certificate
These parameters specify the type of client certificate to use if any. In the Security tab, either the Implicit SSL/TLS or Explicit SSL/TLS option must be selected for client certificate support to be active.
  • No Client Certificate: Specifies that a client certificate must not be presented.
  • Client Certificate in Disk File: Specifies that a client certificate must be presented.
    • Certificate File: Specifies the path to the certificate file.
      • View: Click to view the certificate.
      • Browse: Click to locate the certificate file.
    • Private Key File:  Specifies the path to the private key file.
      • Browse:  Click to locate the private key file.
  • Client Certificate in Certificate Store:  Specifies that a client certificate must be presented that is located in the certificate store.
    • Common Name:  Specifies the Common Name (CN) of the certificate to be presented.
      • View:  Click to view the certificate.
      • Browse:  Click to display a list of certificates in the certificate store.
  • Client Certificate in Certificate on Smart Card:  Specifies that a client certificate stored on a Smart Card must be presented.
Root Certificates
These parameters specify the root certificate store to use: the one provided by OpenSSL or the one that is provided by Windows.
  • Use OpenSSL Root Certificates: (Default) If selected, the root certificates provided by OpenSSL is used.
  • Use Windows Root Certificates: If selected, BlueZone looks for a file called rootcerts.pem in the end user's bluezone\certs directory. If it doesn't exist, it automatically exports the root certificates from Windows and stores them there, giving a message such as 109 root certificates were exported.
    • Update Root Certificates: Click to manually export the certificates. If you connect and are presented with an untrusted host root certificate, and check the box to add it to the trusted list, it imports it into the Windows root store (which can produce a Windows message asking for confirmation), and then exports the root store again to disk producing a message such as 109 root certificates were exported. When this is performed one time, subsequent connections connect without messages.
Parent topic: TN3270E Properties