Adding certificates with a keysize of 4096 fail with:

TSS0942I INVALID CERTIFICATE DATA - LENGTH           
TSS0301I  ADD      FUNCTION FAILED, RETURN CODE =  4

Release : 16.0

Component : CA Top Secret for z/OS

Top Secret Control Option MAXKEYSIZE controls the maximum keysize allowed on the security file.

Set MAXKEYSIZE(4096) to allow certificates with a keysize of 4096 to be added to the security file.