z/OS Security Server RACF Messages and Codes
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


IRRD152I

z/OS Security Server RACF Messages and Codes
SA23-2291-00

IRRD152I
Root Certificate Authority not currently defined to RACF. Top CERTAUTH certificate added with the {TRUST | NOTRUST | HIGHTRUST} status

Explanation

You are attempting to add either a PKCS #7 or PKCS #12 certificate package to RACF®. The package contains an end-entity certificate and a chain of one or more Certificate Authority (CERTAUTH) certificates. The issuer of the top CA certificate (for example, the root Certificate Authority) is not currently defined to RACF. If the top CA certificate is a self-signed certificate, the certificate content is verified using the public key contained in the certificate itself. If the top CA certificate is a non-self-signed certificate, the certificate was signed by a certificate authority that you have not defined to RACF, therefore, cannot be verified.

System action

The top CA certificate is added under CERTAUTH with the trust status displayed. See z/OS Security Server RACF Command Language Reference for information about how the trust status was determined. Processing continues for the remaining certificates in the package.

User response

Review the certificate status and change it if necessary. If you want to change the trust status, you should use the RACDCERT ALTER command.

Parent topic: RACDCERT command messages

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014