ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

KEYUSAGE requirements for WAS (Websphere Application Server) client certificate

book

Article ID: 221402

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

What are the KEYUSAGE requirement when generating a certificate for Websphere Application Server (WAS)?

 


 

Cause

On the TSS GENCERT command to generate the client certificate for WAS specify they following KEYUSAGE keyword and parameters:

KEYUSAGE(HANDSHAKE DATAENCRYT DOCSIGN)

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

Application configured to using the wrong keyring name. Off by one character.