Converting non-z/OS SSH keys to certificates in Top Secret
search cancel

Converting non-z/OS SSH keys to certificates in Top Secret

book

Article ID: 277812

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

"Converting non-z/OS SSH keys to certificates in RACF keyrings" give RACF command example. What are the TSS equivalents?

Resolution

RACF commands converted to TSS:

1. RACDCERT CHECKCERT('datasetname')

TSS CHKCERT DCDSN(datasetname)

2. RACDCERT ID(MEGA) ADDRING(SSHAuthKeysRing)

TSS ADD(MEGA) KEYRING(SSHRING) LABLRING(SSHAuthKeysRing)

3. RDEFINE RDATALIB MEGA.SSHAuthKeysRing.LST UACC(NONE)

TSS ADD(owingacid) RDATALIB(MEGA.SSHAuthKeysRing.LST) 

4. PERMIT MEGA.SSHAuthKeysRing.LST CLASS(RDATALIB) ID(MEGA) ACCESS(READ)

TSS PERMIT(MEGA) RDATALBI(MEGA.SSHAuthKeysRing.LST) ACCESS(READ)

5. RACDCERT REMOVE(ID(MEGA) LABEL('cert-mega-ssh-rsa') RING(SSHAuthKeysRing)) ID(MEGA)

TSS REMOVE(MEGA) KEYRING(SSHRING) RINGDATA(MEGA,SSHCERT) 

6. RACDCERT ADD('MEGA.SSHCERT.DER') ID(MEGA) WITHLABEL('cert-mega-ssh-rsa') TRUST

TSS ADD(MEGA) DIGICERT(SSHCERT) LABLCERT('MEGA.SSHCERT.DER') TRUST

7. RACDCERT CONNECT(ID(MEGA) LABEL('cert-mega-ssh-rsa') RING(SSHAuthKeysRing) USAGE(PERSONAL)) ID(MEGA)

TSS ADD(MEGA) KEYRING(SSHRING) RINDATA(MEGA,SSHCERT) USAGE(PERSONAL)

 

Additional Information

5/31 - Archiving. Joe

5/24 - Sending for approval for publishing.

Powered by Wolken Software