CERTIFICATE AUTHORITY is UNKNOWN received from z/OSMF running CA Top Secrett
search cancel

CERTIFICATE AUTHORITY is UNKNOWN received from z/OSMF running CA Top Secrett

book

Article ID: 138359

calendar_today

Updated On:

Products

Top Secret Top Secret - LDAP

Issue/Introduction

z/OSMF receiving message 'CERTIFICATE AUTHORITY is UNKNOWN' when trying to connect via SSL on a CA Top Secret system.

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

Root chain must be complete. Intermediate root was missing. Need to have it added and owned by CA Top Secret and put on the user's keyring.


1. Add certificate to CA Top Secret security file:

TSS ADD(CERTAUTH) DIGICERT(digicertname) DCDSN(datasetname)


2. Add to users keyring:

TSS ADD(acid) KEYRING(keyringname) RINGDATA(CERTAUTH,digicertname) USAGE(CERTAUTH)


  
Powered by Wolken Software