I am setting up a KEYRING and certificates for TN3270 and getting handshake error "To resolve the handshake error 'The certificate chain was issued by an authority that is not trusted.". What can caused this?
book
Article ID: 28864
calendar_today
Updated On:
Products
ACF2ACF2 - DB2 OptionACF2 for zVMACF2 - z/OSACF2 - MISCPanAptPanAudit
Issue/Introduction
I am setting up a KEYRING and certificates for TN3270 and getting handshake error "To resolve the handshake error 'The certificate chain was issued by an authority that is not trusted.". What can caused this?
Environment
Release: ACF2..001AO-15-ACF2 Component:
Resolution
To resolve the handshake error 'The certificate chain was issued by an authority that is not trusted.' there are two options:
The Server certificate's signing certificate can be EXPORTed from the ACF2 database and deployed to the PC(s) and imported into the PC(s) applilcation's keystore.
The Server certificate can be signed by an external popular CA, the returned signed Server certificate can be INSERTed into the ACF2 database along the the signing external CA Certauth certificate. Since the popular common external CERTAUTH certificates already exist in most keystores on the PC, deployment to the Client is usually necessary.