You are setting up IBM z/OSMF to manage our Broadcom CA products for the first time and followed the instructions in...
Attempting to retrieve the End-Of-Service information we receive error..
The request could not be completed because an error occurred.
Error: An unexpected error occurred while connecting to the End Of Service file server at https://ftpdocs.broadcom.com/WebInterface/phpdocs/0/MSPSaccount/
COMPAT/JSON/BroadcomProdInfo.txt. Error = unable to find valid certification path to requested target
CWPKI0823E: SSL HANDSHAKE FAILURE: A signer with SubjectDN .CN=ftp-qa.broadcom.com, OU=IT, O=Broadcom Inc, L=San Jose, ST=California, C=US. was sent
from the host .ftpdocs.broadcom.com:443.. The signer might need to be added to local trust store .safkeyringhybrid:///IZUKeyring.IZUDFLT., located in SSL conf
iguration alias .izuSSLConfig.. The extended error message from the SSL handshake exception is: .unable to find valid certification path to requested target.
The keyring does not contain a Digicert Intermediate CA certificate.
To confirm, get list of keyring that is attached to IZUSVR, which should be the ACID that the z/OSMF task runs under.
Release : 15.0
Component : CCS390 - CA COMMON SERVICES FOR Z/OS
Using the same Digicert Intermediate CA certificate that was defined to the keyring for the SMP/E Internet Service Retrieval, connect this cert to the keyring that is attached to the ACID being used for z/OSMF.
Be sure to connect as USAGE(CERTAUTH).