Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Using RACF to manage digital certificates z/OS Security Server RACF Security Administrator's Guide SA23-2289-00 |
|
You can use RACF® to create, register, store, and administer digital certificates and their associated private keys, and build certificate requests that can be sent to a certificate authority for signing. You can also use RACF to manage key rings of stored digital certificates. Digital certificates and key rings are managed in RACF primarily by using the RACDCERT command or by using an application that invokes the R_datalib callable service (IRRSDL00 or IRRSDL64) or the initACEE callable service (IRRSIA00). The R_datalib callable service provides an application programming interface to the CDSA (Common Data Security Architecture) data library functions, and is used by secure sockets layer (SSL) and System SSL to establish secure sessions between servers. The initACEE callable service can be used to manage digital certificates for RACF-authenticated users. RACF has three categories
for managing digital certificates:
|
Copyright IBM Corporation 1990, 2014
|