From the manual it appears that TPAM will use Telnet over port 23 to connect with AS400. My understanding is that Telnet will transmit the password in the "clear". That would not be acceptable here.
Is there anyway to encrypt the communication between TPAM and AS400? Or is that a limitation of AS400?
I do see that I can check the "Use SSL" box, but that would just secure the communication and not actually encrypt the password, correct? If we check the "Use SSL" box, how do we generate the certificate?
Is there anything else we can do to make the TPAM to AS400 connection/communication as secure as possible?
SSL would secure the connection. There are default keys supplied with the appliance and you have the option to add your own. This is done via the /paradmin interface, Keys | Manage SSH Keys. There is more about this in the Configuration & System Administrator Manual.
Specifying "Use SSL" on the "Connection" tab of the managed system in TPAM will connect to the AS400 over encrypted Telnet, thereby encrypting the password.