What Are The Relative Distinguished Names (RDNs) Supported By CA Top Secret?

book

Article ID: 49120

calendar_today

Updated On:

Products

CA Cleanup CA Datacom - DB CA Datacom CA Datacom - AD CA Datacom - Server CA CIS CA Common Services for z/OS CA 90s Services CA Database Management Solutions for DB2 for z/OS CA Common Product Services Component CA Common Services CA Datacom/AD CA ecoMeter Server Component FOC CA Easytrieve Report Generator for Common Services CA Infocai Maintenance CA IPC Unicenter CA-JCLCheck Common Component CA Mainframe VM Product Manager CA Chorus Software Manager CA On Demand Portal CA Service Desk Manager - Unified Self Service CA PAM Client for Linux for zSeries CA Mainframe Connector for Linux on System z CA Graphical Management Interface CA Web Administrator for Top Secret CA CA- Xpertware CA Top Secret CA Top Secret - LDAP CA Top Secret - VSE

Issue/Introduction

 

Summary:

 

There is a need to have the list of RDNs supported which is used to tell the difference between two certificates. Certificates may have some of the RDNs identical, but not all.

 

Instructions:

 

Recognized relative Distinguished Names (RDNs) are supported in the SUBJECTN field of the TSS GENCERT command. They are:

C, CN,DC, E, L, M, O, OU, PC, S/SP/ST, T, STREET , and UID.

Note: You can only use one out of the three prefixes S, SP and ST in the TSS GENCERT command.

SSL supports the following RDNs:

C Country

CN Common name

DC Domain component

E E-mail address

EMAIL E-mail address (preferred)

EMAILADDRESS E-mail address

L Locality

O Organization name

OU Organizational unit name

PC Postal code

S State or province

SN Family name

SP State or province

ST State or province (preferred)

STREET Street

T Title

 

Additional Information:

 

For CA Top Secret r15.0, refer to CA Top Secret for z/OS Cookbook; Chapter #5 Digital Certificates --> General Rules to ave more details about TSS GENCERT command.

 

For CA Top Secret r16.0 go to docops.ca.com site; signon; choose your product CA Top Secret for z/OS - 16.0; click on "Using" link; then click on "Digital Certificates" link; then click on "Generate a Digital Certificate and Add It to an User"  to have more information about TSS GENCERT command. 

Environment

Release: TOPSEC00200-15-Top Secret-Security
Component: