EZD1916I

Explanation
 The Federal Information Processing Standard 140
(FIPS 140) function is enabled for the IKE daemon, but it is not enabled
for  the network security services (NSS) server.  The  NSS server
is not permitted to provide cryptographic services to the IKE daemon
for the stack. 
 In the message text:  tcpname
The name of the affected TCP/IP stack.

System action
 IKED will not enable cryptographic services through
the NSS server for the named  stack.  IKE daemon processing continues.

Operator response
 Contact the system programmer.

System programmer response
 When the IKE daemon is enabled for
FIPS 140 support, stacks that are configured  to use the NSS server
for cryptographic services require that the NSS server  also be enabled
for FIPS 140 support.    
 The stack configuration, the IP security
policy for the stack, the IKE daemon configuration, and the NSS server
configuration must all be consistent.  To  understand the implications
and requirements for enabling FIPS 140 support in  your environment,
see the information about FIPS 140 and IP security in z/OS Communications Server: IP Configuration
Guide.

User response
 Not applicable.

Problem determination
 None.

Source
 z/OS® Communications
Server TCP/IP: IKE daemon

Module
 stackobj.cpp

Routing code
 11

Descriptor code
 7

Automation
 This message is output to syslog.

Example
  EZD1916I NSS server cryptographic services are disabled for stack TCPCS - FIPS140 support is enabled 
         for the IKE daemon but is not enabled for the NSS server.