Developer for z/OS client fails to connect to host using SSL

Problem

When using SSL with Developer for z/OS®, the client connection fails. The security configuration of this customer included an unknown Certificate Authority (an internal created CA, not Thawte or Verisign). This is similar to using a self-signed certificate and requires that the public portion of the CA certificate must be extracted and added to the keyring as well as the requested certificate.

Error

A stack trace will show:

java.net.SocketTimeoutException: Read timed out
*

In rseserver.log, this error will be seen:

ERROR CertificateValidator: 
java.io.FileNotFoundException: RSEDRING (EDC5129I No such file or 
  directory. (errno2=0x05620062))
  at java.io.FileInputStream.<init>(FileInputStream.java:123)
  at java.io.FileInputStream.<init>(FileInputStream.java:83) 
  at com.ibm.etools.zos.server.ZosCertificateValidator.<init>
   (ZosCertificateValidator.java:174)
  at com.ibm.etools.zos.server.RseDaemon.main(RseDaemon.java:358)

and

INFO LogHandler:
ServerKeyStore:java.io.IOException: 
  Failed validating certificate paths

Explanation and resolution

The RSE Server performs a validation of the certificate. In this case validation was failing. Add the internal issuing Certificate Authority certificate into the KEYRING used for RSED as well as the requested certificate.

Additional information

None.