On 1/23/2018 7:13 AM, Vince Getgood wrote:
I have that in a different keyring - always have had, and it's always worked
before.
In my SMP/e ORDERSRVR data: -
keyring="userid/SMPEKeyring"
certificate="SMPE Client Certificate"
in my FTP data options: -
KEYRING IBMUSER/FtpSecur
(don't blame me, this is the way it was set up when I got here!)
Nope. The keyring identified in the <ORDERSERVER> must contain the
certificate you request and download from Shopz, *AND* the appropriate
certificate authority certificates for the order servers. As of today,
that should include both the GeoTrust and the DigiCert CA certs.
The keyring you identify in your FTP.DATA file only needs to contain the
appropriate CA certificate for the download server. As of today, that
is the GeoTrust CA.
However, rather than identify a specific keyring in your FTP.DATA file,
and worry about which CA certs are connected to that keyring, I
recommend you use this to tell the ftp client to use as necessary any
and all CA certificates in your security data base:
keyring *AUTH*/*
Kurt Quackenbush -- IBM, SMP/E Development
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
