IRRD119I Certificate Authority not defined to RACF.
search cancel

IRRD119I Certificate Authority not defined to RACF.

book

Article ID: 220090

calendar_today

Updated On:

Products

COMMON SERVICES FOR Z/OS

Issue/Introduction

Received this when attempting to use Internet Service Retrieval with RACF. 
/* ADD AND CONNECT THE K9830TM CERT FOR CA SMPE      */
READY
RACDCERT ADD('K9999P.DC.K9830TM.BROADCOM.CA.SMPE.CERT3.CER')  ID(K9830TM) TRUST
('K9830TM_BROADCOM_CA_SMPE_CERT3')
IRRD199I Certificate with label 'K9830TM_BROADCOM_CA_SMPE_CERT3' is added for user K9830TM.
IRRD175I The new profile for DIGTCERT will not be in effect until a SETROPTS REFRESH has been issued.
IRRD119I Certificate Authority not defined to RACF.  Certificate added with TRUST status.
READY
READY
RACDCERT CONNECT(ID(K9830TM)              LABEL('K9830TM_BROADCOM_CA_SMPE_CERT3')  RING(SMPE_CA_X090RING)
RTAUTH)) ID(K9830TM)
READY
READY
/* CONNECT DIGI CERT                       */
READY
RACDCERT CONNECT(CERTAUTH LABEL('DIGICERT_SHA2_SECURE_SERVER_CA')  RING(SMPE_CA_X090RING)  USAGE(CERTAUTH)) ID(K9830TM)
   

Environment

Release : 15.0

Component : CA RECEIVE ORDER

Cause

Needed to correct setup and deployment of CA Internet Service Retrieval

  • Current Restriction - external password cannot contain special characters.  

Resolution

Had followed the steps outlined in the Receive Order Setup and Configuration
Resolution is to use a password without special characters.

Additional Information

Refer to these links under the Mainframe Common Maintenance Procedures:
Configure CA SMP/E Internet Service Retrieval
Configure IBM RACF Security 



  

Powered by Wolken Software