ACF2 not allowing all certificates to be read in when using *AUTH*/* for virtual key ring name

search cancel

ACF2 not allowing all certificates to be read in when using AUTH/* for virtual key ring name

book

Article ID: 408857

calendar_today

Updated On:

Products

ACF2 - z/OS ACF2 ACF2 - MISC

Issue/Introduction

A virtual keyring is not reading in all certificates based on a filter.

Resolution

There is an issue with a certificate that still exists in the in-core certificate table, and its fetching is failing because it is not present in the database. This issue is preventing other certificates from being fetched.

To resolve this issue refresh the in-core certificate tables:

F ACF2,REBUILD(USR),CLASS(P)

F ACF2,OMVS(CERTDATA)
 
This issue can occur in a shared DB environment when a certificate is deleted from one LPAR but the corresponding REBUILD commands are not issued on the other shared LPARs.

Feedback

thumb_up Yes

thumb_down No