Convert RBAC ZOWE RACF commands to CA Top Secret TSS commands

book

Article ID: 143404

calendar_today

Updated On:

Products

CA Top Secret

Issue/Introduction

RACDCERT CERTAUTH GENCERT +                          
  SUBJECTSDN(CN('[common_name]') +                        
  OU('[organizational_unit]') +                                       
  O('[organization_name]') +                                         
  L('[locality]') SP('[state_or_province]') C('[country]')) +           
  KEYUSAGE(HANDSHAKE DATAENCRYPT DOCSIGN CERTSIGN) + 
  WITHLABEL('[ca_label]') +                            
  NOTAFTER(DATE([xxxx/xx/xx])) +                       
  SIZE(2048)

TSS GENCERT(CERTAUTH) DIGICERT(root_digicert_name) - 
SUBJECTN('CN="common name" OU="organizational unit" -
O="organization name" L="locality" SP="state or province" -
C="country"')
KEYUSAGE(HANDSHAKE DATAENCRYPT DOCSIGN CERTSIGN) -
LABLCERT('ca_label') NADATE(mm/dd/yy) - 
KEYSIZE(2048)

RACDCERT ID('[cert_owner]') GENCERT +                          
  SUBJECTSDN(CN('[common_name]') +                        
  OU('[organizational_unit]') +                                       
  O('[organization_name]') +                                         
  L('[locality]') SP('[state_or_province]') C('[country]')) +           
  KEYUSAGE(HANDSHAKE DATAENCRYPT DOCSIGN CERTSIGN) + 
  WITHLABEL('[personal_label]') +                            
  NOTAFTER(DATE([xxxx/xx/xx])) +                       
  SIZE(2048) +
  SIGNWITH(CERTAUTH LABEL('[ca_label]'))

TSS GENCERT(cert_owner) DIGICERT(client_digicert_name) -
SUBJECTN('CN="common name" OU="organizational unit" -
O="organization name" L="locality" SP="state or province" -
C="country"') -
KEYUSAGE(HANDSHAKE DATAENCRYPT DOCSIGN CERTSIGN) -
LABLCERT('ca_label') NADATE(mm/dd/yy) - 
KEYSIZE(2048) SIGNWITH(CERTAUTH,root_digicert_name) 

RACDCERT ID([cert_owner]) ADDRING([ring_name])                
RACDCERT CONNECT(ID([cert_owner]) LABEL('[cert_label]') RING([ring_name])) 

TSS ADD(cert_owner) KEYRING(keyring_name) –
        LABLRING(ring_name)
TSS ADD(cert_owner) KEYRING(keyring_name) -    
       RINGDATA(cert_owner,client_digicert_name) USAGE(PERSONAL)

SETROPTS RACLIST(DIGTRING,DIGTCERT) REFRESH

Not needed in TSS. Refresh not needed. Done automatically.


RACDCERT LISTRING([ring_name]) ID([cert_owner])

TSS LIST(cert_owner) KEYRING(keyring_name)
TSS ADD(RDT) RESCLASS(ZOWE) MAXLEN(246)  ATTR(LONG,GENERIC)

SETROPTS RACLIST(CDT) REFRESH

Not needed in TSS. Refresh not needed. Done automatically.

                                                                                 

 

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

RBAC ZOWE RACF commands converted to CA Top Secret TSS commands.