Measuring digital certificate performance in Top Secret
search cancel

Measuring digital certificate performance in Top Secret

book

Article ID: 131007

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

Is there any digital certificate performance tracing or tracking that shows how fast Top Secret processes a digital certificate r_datalib RACF Callable Service security call?

Resolution

A OMVSTRACE r_datalib trace will show the response time for a r_datalib digital certificate request by CA Top Secret.


Instructions for activating the OMVSTRACE.    

1. Bring down the region before activating the traces to capture any digital certificate call during initialization.               
2. ST SET,TYPE=OMVS,SFUNC=RDATALIB,ID=TSS,DSN=datasetname,END (issued on the console)   
3. Bring up the region and recreate the problem.                           
4. OMVSTRACE entries will be written to the dataset.                                                                                                         
5. ST DEL,ID=xx  (issued on the console)                                                                
                                                         
The FB 133 RECL BLKSIZE 1330 dataset for the DSN= must be pre-allocated.    

Please make sure it is large enough to hold enough trace data otherwise the trace will stop once it is full.   

Example OMVSTRACE r_datalib digital certificate call entry:

11.16.25 STC28270 +CAS2205I REQUEST=R_datalib ,EXIT=PRE ,RC=N/A    <====Beginning
11.16.25 STC28270 +CAS2206I USER=USERA ,UID=0 ,GROUP=OMVSGRP ,GID=1
11.16.25 STC28270 +CAS2206I Function=DataGetNext ,Userid=USERA
11.16.25 STC28270 +CAS2206I Attribute Flag=80000000
11.16.25 STC28270 +CAS2206I Usage=Personal len=05D9 ptr=00000050 66F601F0
11.16.25 STC28270 +CAS2206I Label=TEST_SSL_CERT *Default*
11.16.25 STC28270 +CAS2206I Subj DN len=000000D2 ptr=00000050 66F215D0
11.16.25 STC28270 +CAS2206I Certificate Owner CERTSITE
11.16.25 STC28270 +CAS2206I Recd id len=00000090 Val=123467891011121341617181920.CN=CO
11.16.25 STC28270 +CAS2205I REQUEST=R_datalib ,EXIT=POST,RC=0/0:0
11.16.25 STC28270 +CAS2205I REQUEST=R_datalib ,EXIT=PRE ,RC=N/A
11.16.25 STC28270 +CAS2206I USER=USERA ,UID=0 ,GROUP=OMVSGRP ,GID=1
11.16.25 STC28270 +CAS2206I Function=CheckStatus ,Userid=
11.16.25 STC28270 +CAS2205I REQUEST=R_datalib ,EXIT=POST,RC=8/8:4 <==== END

Multiple lines are produce for each r_datalib call.

EXIT=PRE indicates the beginning.

EXIT=POST indicates the end.

Note the time stamps at the beginning of each line which will give you the timeframe for the r_datalib call to be processed.

 



Powered by Wolken Software