It is worth stressing that use of IBM’s Application Transparent Transport Layer Security (AT-TLS) product is the only supported method of securing connections to ZMF-related applications that run in the supplied Apache Tomcat address space. This includes the REST services (zmfrest.war), zMobile (zmobile.war), and the base ZMF web services (zmfws.war).

Whilst it may technically be possible to run secure versions of some of these applications in other ways, e.g. by implementing native Tomcat SSL functionality, this is not a supported configuration. If problems are experienced running in such a manner it may be necessary to switch to AT-TLS before assistance can be provided.

This AT-TLS requirement is documented in the ChangeMan ZMF REST Services Getting Started Guide, the 8.3 version of which can be found here, but also applies to the other applications listed above.