General Requirements for Certificates

The certificate for the Connect:Direct® Secure Plus for z/OS® server defined in the local node record has the following general requirements:

  • X.509 version 3 end-user server certificate that can interpret digital signatures and can encrypt and decrypt data
  • Must be defined to the key database or key ring
  • Must be stored in the key database or key ring
  • Must have a private key
  • Must be valid and not expired
  • Must be signed by a CA or self-signed
  • Must be set as default in the key database or key ring