search cancel

Copy a Certificate Authority from one CA Top Secret system to another CA Top Secret system.

book

Article ID: 17933

calendar_today

Updated On:

Products

Cleanup Datacom DATACOM - AD CIS COMMON SERVICES FOR Z/OS 90S SERVICES DATABASE MANAGEMENT SOLUTIONS FOR DB2 FOR Z/OS COMMON PRODUCT SERVICES COMPONENT Common Services CA ECOMETER SERVER COMPONENT FOC EASYTRIEVE REPORT GENERATOR FOR COMMON SERVICES INFOCAI MAINTENANCE IPC UNICENTER JCLCHECK COMMON COMPONENT Mainframe VM Product Manager CHORUS SOFTWARE MANAGER CA ON DEMAND PORTAL CA Service Desk Manager - Unified Self Service PAM CLIENT FOR LINUX ON MAINFRAME MAINFRAME CONNECTOR FOR LINUX ON MAINFRAME GRAPHICAL MANAGEMENT INTERFACE WEB ADMINISTRATOR FOR TOP SECRET Xpertware Top Secret Top Secret - LDAP Top Secret - VSE

Issue/Introduction

Description:

Steps to copy a Certificate Authority from one CA Top Secret system to another CA Top Secret system.

Solution:

  1. Export a copy of the Certificate Authority to a dataset:
    TSS EXPORT(CERTAUTH) DIGICERT(digicertname) DCDSN(datasetname)
    FORMAT(PKCS12DER) PKCSPASS(password)
     
  2. Verify the TSS EXPORT was successful.
    TSS CHKCERT DCDSN(dataset) PKCSPASS(password)
     
  3. FTP the dataset in binary to the other CA Top Secret system.
     
  4. Add the Certificate Authority to the security file:
    TSS ADD(CERTAUTH) DIGICERT(digicertname) LABLCERT(certificatelabelname)
    DCDSN(datasetname) PKCSPASS(password) TRUST
     
  5. Add the certificate to the keyrings:
    TSS ADD(acid) KEYRING(keyringname) RINGDATA(CERTAUTH,digicertname)
    USAGE(CERTAUTH)


Environment

Release:
Component: AWAGNT

Resolution

Please Update This Required Field