ACF2 INSERT and CONNECT of certificate getting RC 0 but not working? no ACF6D074 or ACF68011
Article ID: 214515
Updated On:
Products
Issue/Introduction
Trying to do an INSERT or CONNECT of a certificate using TSO, ACF or TSO BATCH gets 0 return codes,
no CERTDATA records or messages returned.
For example:
READY
ACF
set profile(user) div(certdata)
PROFILE
insert SITECERT.suffix dsn('hlq.cert.suffix') pass(Nopass) Label(label-name) trust
PROFILE
set profile(user) div(keyring)
PROFILE
Connect certdata(SITECERT.suffix) keyring(RING.name) usage(personal)
PROFILE
END
Versus:
READY
ACF
SET PROFILE(USER) DIV(CERTDATA)
PROFILE
INSERT SITECERT.suffix DSN(hlq.cert.suffix') PASS(test) LABEL(label-name)
CERTDATA / SITECERT.suffix LAST CHANGED BY user00 ON 05/06/21-12:30
CERTNSER(0000000000000001) ISSUERDN(CN=cn.OU=out).
LABEL(label-name) SERIAL#(00) SUBJDN(CN=cn.OU=ou)
ACF6D074 CERTDATA / SITECERT.suffix RECORD INSERTED
PROFILE
SET PROFILE(USER) DIV(KEYRING)
PROFILE
CONNECT CERTDATA(SITECERT.suffix) KEYRING(ABC.RING) USAGE(PERSONAL)
ACF68011 Certificate successfully connected to the key ring
PROFILE
END
READY
END
ACF6D074 and ACF68011 are missing in the first example
Environment
Release : 16.0
Component : CA ACF2 for z/OS
Resolution
If a site is using CPF Command Propagation and the commands are DFTCMD(NODE1, NODE2, NODE3)
parameter specifies other nodes and not the home node the commands will be propagated to the other nodes
and not executed on the home nodes which will result in not records listed or messages returned on the home
node where the command was executed.
If the DFTCMDS is changed to DFTCMD(NODE1, NODE2, NODE3, HOMENODE) then the commands will be issued
on the home node as well and the records listed and the messages will appear after the commands.
Feedback
