Message: ACF6D075 is observed when inserting a certificate. The signing certificate is not a Certificate Authority certificate.
search cancel

Message: ACF6D075 is observed when inserting a certificate. The signing certificate is not a Certificate Authority certificate.

book

Article ID: 40270

calendar_today

Updated On:

Products

ACF2 ACF2 - z/OS

Issue/Introduction

Attempting to insert 3 new certificates.

Cert #1 is self signed ( Root cert) 
Cert #2 is signed by Cert #1 (... Intermediate #1)
Cert #3 is signed by Cert #2  (when inserting this cert,  get MSG - ACF6D075 The signing certificate is not a Certificate Authority certificate. 

The certificate is inserted without TRUST.

Environment

Release: 16.0
Component: ACF2 for Z/OS

Resolution

Cert #3 was not signed by a CA (Certificate Authority)  
A true CA, like Verisign or GoDaddy, etc, do an investigation into the requests to prove who they say they are, they really are.  
A self-signed does not go through that process, so it is not trusted and ACF2 can see that on the insert.

So it is up to you to decide if this certificate can be trusted.
Since you know what you did and have not passed off the information where it could be corrupted or stolen,
you know it is trusted so you add the TRUST parm. 

CHANGE cert.auth TRUST