Copy a Certificate Authority from one CA Top Secret system to another CA Top Secret system.
book
Article ID: 17933
calendar_today
Updated On:
Products
CleanupDatacomDATACOM - ADCISCOMMON SERVICES FOR Z/OS90S SERVICESDATABASE MANAGEMENT SOLUTIONS FOR DB2 FOR Z/OSCOMMON PRODUCT SERVICES COMPONENTCommon ServicesCA ECOMETER SERVER COMPONENT FOCEasytrieve Report Generator for Common ServicesINFOCAI MAINTENANCEIPCUNICENTER JCLCHECK COMMON COMPONENTMainframe VM Product ManagerCHORUS SOFTWARE MANAGERCA ON DEMAND PORTALCA Service Desk Manager - Unified Self ServicePAM CLIENT FOR LINUX ON MAINFRAMEMAINFRAME CONNECTOR FOR LINUX ON MAINFRAMEGRAPHICAL MANAGEMENT INTERFACEWEB ADMINISTRATOR FOR TOP SECRETXpertwareTop SecretTop Secret - LDAPTop Secret - VSE
Issue/Introduction
Description:
Steps to copy a Certificate Authority from one CA Top Secret system to another CA Top Secret system.
Solution:
Export a copy of the Certificate Authority to a dataset: TSS EXPORT(CERTAUTH) DIGICERT(digicertname) DCDSN(datasetname) FORMAT(PKCS12DER) PKCSPASS(password)
Verify the TSS EXPORT was successful. TSS CHKCERT DCDSN(dataset) PKCSPASS(password)
FTP the dataset in binary to the other CA Top Secret system.
Add the Certificate Authority to the security file: TSS ADD(CERTAUTH) DIGICERT(digicertname) LABLCERT(certificatelabelname) DCDSN(datasetname) PKCSPASS(password) TRUST
Add the certificate to the keyrings: TSS ADD(acid) KEYRING(keyringname) RINGDATA(CERTAUTH,digicertname) USAGE(CERTAUTH)