You might try
RACDCERT CHECKCERT('....') and see what RACF thinks in the certificate. If
there were funny chars, it should show up
Colin
On Tue, 13 Jun 2023 at 14:40, Peter Vander Woude <[email protected]>
wrote:
> I open the file created by the export, using notepad. Select all the text
> in the file, copy and then in an edit of a dataset with the following
> characteristics:
>
> recfm=vb
> lrecl=84
>
> I paste the text from the pc file. The use that as the source for the
> RACDCERT import of the CA Cert, making sure to mark the certificate as
> trusted.
>
> Peter
>
> On Mon, 12 Jun 2023 08:36:34 -0500, Paul Gilmartin <[email protected]>
> wrote:
>
> >On Mon, 12 Jun 2023 08:22:03 -0500, Peter Vander Woude wrote:
> >
> >>What I have done, to get these certificates, is to look at the keystore
> on the pc, and save a copy of the certauth record from there, in base64
> .cer format. Then edit it, copy and past into a dataset on the mainframe.
> >>
> >Is it ASCII, EBCDIC, or neutral? What must you edit?
> >
> >
> >>><
> https://www.cs.cmu.edu/~rdriley/487/papers/Thompson_1984_ReflectionsonTrustingTrust.pdf
> >
> >>>
> >Of course you can trust the PC. It's where you keep your credit cards.
> >
> >--
> >gil
> >
> >----------------------------------------------------------------------
> >For IBM-MAIN subscribe / signoff / archive access instructions,
> >send email to [email protected] with the message: INFO IBM-MAIN
>
> ----------------------------------------------------------------------
> For IBM-MAIN subscribe / signoff / archive access instructions,
> send email to [email protected] with the message: INFO IBM-MAIN
>
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
