Valid on z/OS.
Use the FORMAT keyword to specify the output format when exporting a digital certificate to an output data set.
This keyword has the following format:
TSS EXPORT(acid) DIGICERT(name)
DCDSN(dsname)
FORMAT(format‑type)
PKCSPASS(PK12 password)
(Default) Indicates Base64 encoded certificates.
Indicates DER encoded X.509 certificates.
Indicates DER encoded (then Base64 encoded) PKCS#12 package.
Indicates DER encoded PKCS#12 package.
Specifies a B64 encoded PKCS#7 package.
Specifies a DER encoded PKCS#7 package.
If the certificate's private key resides in an ICSF storage facility and the format of PKCS12DER or PKCS12B64 is specified in the TSS EXPORT command, the command is rejected and a TSS0533E message is issued. You cannot export a digital certificate with ICSF.
ICSF is the interface to the cryptographic hardware on z/OS. You must have cryptographic hardware installed and enabled on your system.
This keyword is used with:
This example exports a digital certificate to a data set in Base64 format:
TSS EXPORT(user1) DIGICERT(cert0001)
DCDSN(udrt1.cert.data)
FORMAT(certb64)
PKCSPASS(secreto
This example exports a digital certificate to a data set in DER encoded X.509 format:
TSS EXPORT(user1) DIGICERT(cert0001)
DCDSN(udrt1.cert.data)
FORMAT(certder)
PKCSPASS(secreto
This example exports a digital certificate to a data set in Base64 PKCS#12 package format:
TSS EXPORT(user1) DIGICERT(cert0001)
DCDSN(udrt1.cert.data)
FORMAT(PKCS12B64)
PKCSPASS(secretone)
This example exports a digital certificate to a data set in DER encoded PKCS#12 package format:
TSS EXPORT(user1) DIGICER(cert0001)
DCDSN(udrt1.cert.data)
FORMAT(PKCS12DER)
PKCSPASS(secreto
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|