ACF2 force on a delete certificate command will cause the private key to be deleted. Can a new certificate be created with the same label and key.
search cancel

ACF2 force on a delete certificate command will cause the private key to be deleted. Can a new certificate be created with the same label and key.

book

Article ID: 279603

calendar_today

Updated On:

Products

ACF2 - z/OS

Issue/Introduction

A certificate was deleted with its private key.
Can this be restored or is a recreate needed?

Cause

 

Resolution

To see if a private key exists for a certificate, issue a CHKCERT command
against the certificate if it has been saved in a flat file.
If it shows that there is a private key, issue an INSERT of the certificate from the flat file to the ACF2 database.
If there is no private key, or the certificate has not been stored in a flat file,  a new certificate needs to b created via GENCERT.

The same record key and label can be used if a new certificate needs to be recreated.

Powered by Wolken Software