Valid on z/OS.
Use the DIGICERT keyword to identify a digital certificate.
Note: You must use this keyword with ADDTO, ROLLOVER, GENCERT, DIGICERT, and REKEY functions with digital certificates.
When adding a DIGICERT using DCDSN that contains a PKCS12 package, the first certificate is added to the user with the signing certificates. The certificates are added to CERTAUTH ACID with label-generated names of AUTOXXX between 0 and 1000.
If an error occurs during the add function, certificates added to CERTAUTH are not backed out.
This keyword has the following format:
TSS COMMAND(acid) DIGICERT(name)
[DCDSN(dsname)]
Specifies a case-sensitive character ID that identifies the digital certificate to an ACID.
Length: 1 to 8 characters
This keyword is used with:
Administrators without ACID(MAINTAIN) and MISC4(CERTUSER) authority need:
Example: Add a Certificate
This example adds a digital certificate with the name CERT0001 to USER1:
TSS ADDTO(USER1) DIGICERT(CERT0001)
DCDSN(USER1.CERT.DATA)
Example: List Certificates on a System
This example lists all the digital certificates on a system:
TSS LIST(ACIDS) DIGICERT(ALL)
Example: Remove a Certificate
This example removes the digital certificate from the Security File:
TSS REMOVE(USER1) DIGICERT(CERT0001)
Example: Roll Over a Certificate
This example rolls over a certificate with a REKEY certificate:
TSS ROLLOVER(myacid) DIGICERT(TEST)
NEWDIGIC(NEWTEST)
Example: Generate a Certificate Named TEST
This example generates a certificate named TEST within the acid record:
TSS GENCERT(myacid) DIGICERT(TEST)
Example: Generate a Certificate Based on Another Certificate
This example generates the new certificate NEWDIGIC based on a certificate in the DIGICERT field:
TSS REKEY(myacid) DIGICERT(TEST)
NEWDIGIC(NEWTEST)
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|