"Ward, Mike S" wrote: > I made sure this wasn't the case. You can hex edit the file in ispf and > > look for and delete them if need be. My ftp wasn't appending CRLF's to > > the file. > > The file is an 84 byte record variable length blocked 27998. I have > > opened up and ETR with IBM to see if RACF is having some kind of issue. >
Are you sure it is a valid CSR? It should starrt with -----BEGIN CERTIFICATE REQUEST----- and end with -----END CERTIFICATE REQUEST----- I have had people send me exported certs, or even their private key rather than a CSR. Another possibilty, I have had problems with certificates that had an & (ampersand) in their name. Initially I could not add a local CA cert with the & in the name. If I remember correctly, this was because generics were enabled on the class. I corrected that and was able to add the cert and thought everything was ok, but I still seem to have problems recognizing certs signed with this cert. When I get a chance I am going to try and track this down. In the mean time I created my own CA cert to sign certs for TLS FTP's. I have has no problem signing valid certs with this.. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
