A certificate was put into a dataset, inserted into the ACF2 database, and connected to a keyring. When running a CHKCERT job an RC 4 was provided and the following error was found in the job output:  

ACF68033 The password is incorrect for the CERTIFICATE

Why is this issue occurring?

Release : 16.0

Component : ACF2 for z/OS

If CHKCERTing a dataset that contains private key information, or was secured by a password off of the mainframe, then the PASSWORD parameter will be required on the CHKCERT command.

If the certificate is inserted into the ACF2 database, a CHKCERT can be ran against the ACF2 CERTDATA record name and a password will not need to be specified.

Example:

CHKCERT DSN('TEST.CERT') PASSWORD(password)

SET P(USER) DIV(CERTDATA)
INSERT USER1.CERT DSN('TEST.CERT') LABEL(Test Example)

CHKCERT USER1.CERT