IBM i

IBM i 

A space for professionals working with IBM’s integrated OS for Power systems to exchange ideas, ask questions, and share expertise on topics like RPG and COBOL development, application modernization, open source integration, system administration, and business continuity.


#Power


#IBMi
 View Only

Starting BRMS web based GUI for 5770-BR2

By Robert Berendt posted 4 days ago

  

I have done this for 14 lpars of IBM i running a combination of IBM i 7.5 and IBM i 7.6.

I am going under a few assumptions.

  1. You want to do it right.  So, you are going to start out using https and not http.
  2. You have already set up a valid certificate in Digital Certificate Manager.

I started with the following 

See documentation on using https vs http at https://fortradocs.atlassian.net/wiki/spaces/IWT/pages/2534539265

With that background I quickly burned through all LPARs in a short amount of time with this check list.

Ensure cert is assigned to QIBM_QBRM_WEB

https://gdihq.dekko.com:2007/dcm/login

CHGWEBBRM HTTP(*AUTO 2088) HTTPS(*ON 2089) AUTOSTART(*YES)

WRKACTJOB JOB(QBRMWEBSVR)

If there are any active jobs:

ENDTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR)

WRKACTJOB JOB(QBRMWEBSVR)

STRTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR)

WRKACTJOB JOB(QBRMWEBSVR)

Test https://ibmi.dekko.com:2089

Trouble shooting:

NETSTAT OPTION(*CNN) F15 for ports 2088-2089

3 comments
78 views

Permalink

https://community.ibm.com/community/user/blogs/robert-berendt/2025/10/21/starting-brms-web-based-gui-for-5770-br2

Comments

Rudi Van Helvoirt
2 days ago

If you have several LPARs where you need to implement TLS for this new BRMS HTTP server, I use ACS RSS to get the job done.
Once you completed assigning the certificate to the HTTP server using DCM this what I use:

/**********************************************************************/
-- category: System Management
-- description: Configure TLS for HTTP BRMS for i
CL:CHGWEBBRM HTTP(*AUTO 2088) HTTPS(*ON 2089);

CL:ENDTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR);
CL:DLYJOB 15;
CL:STRTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR);
CL:DLYJOB 15;
-- Check if port 2088 & 2089 are active
SELECT JOB_NAME,
       LOCAL_PORT,
       LOCAL_ADDRESS,
       REMOTE_PORT,
       REMOTE_ADDRESS
    FROM QSYS2.NETSTAT_JOB_INFO
    WHERE LOCAL_PORT IN (2088, 2089);
stop;
-- Start Testing
-- happy with testing?
-- Disable non-TLS port
CL:CHGWEBBRM HTTP(*OFF) HTTPS(*ON 2089) AUTOSTART(*YES);
stop;
CL:ENDTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR);
CL:DLYJOB 15;
CL:STRTCPSVR SERVER(*HTTP) HTTPSVR(QBRMWEBSVR);

/******************************************************************************/

Robert Berendt
2 days ago

I changed this blog to be publicly available.

Robert Berendt
3 days ago

BRMS and IBM i Navigator.

If BRMS does not appear in Navigator under Bookmarks then follow the advice of Brian Nordland of Fortra in his reply at https://community.ibm.com/community/user/discussion/brms-how-do-you-add-a-bookmark-to-ibm-i-navigator-for-brms#bmcfb47959-b2bf-4114-9d2e-44889ded7f81