Securing the primary system

This section describes the steps to use z/OS Communications Server AT-TLS to secure the connection on the primary system.

Procedure

Do the following steps on the primary system.

  1. Edit hlq.CNTL(BRNWCERS) to change the user to the ID of the account running RT/SMF Dispatcher. Change date to an expiration date in YYYY-MM-DD format.
  2. Submit hlq.CNTL(BRNWCERS) to generate the certificates and key ring in RACF. The public key certificate is exported to data set user.GDPS.SCACERT.
  3. Transmit the exported certificate to the Cyber Vault system.