When I try to import an ACF2 created digital certificate to a LINUX box, it is Rejected with message 'Password Is Invalid'
search cancel

When I try to import an ACF2 created digital certificate to a LINUX box, it is Rejected with message 'Password Is Invalid'

book

Article ID: 25554

calendar_today

Updated On:

Products

ACF2 ACF2 - DB2 Option ACF2 for zVM ACF2 - z/OS ACF2 - MISC PanApt PanAudit

Issue/Introduction

Question:

A digital certificate built by CA ACF2 was exported to a LINUX box, but the import is rejected with a message that the password is invalid or the PKCS12 password has been corrupted or been created with an unsupported version of PKCS12. The certificate requires a private key. Why is it rejected?

Answer:

Ensure that FORMAT=PKCS12DER is specified when you EXPORT the package from CA ACF2. If the FORMAT is PKCS12B64, that isn't going to work. PKCS12B64 will only work when exported to a RACF, Top Secret or CA ACF2 mainframe system.

In order to import on any other platform, such as LINUX or Windows, you have to use FORMAT=PKCS12DER and then FTP the file in BINARY format.

Environment

Release:
Component: ACF2MS

Resolution

-

Powered by Wolken Software