Thank you.
Using Firefox and FTP we uploaded the Digicert to ACF2 and attached to our
Keyring.
The serial # matched what was in IBM Flash 10884.
I then ran a RECEIVE ORDER HOLDDATA to eccgw02.rochester.ibm.com (which we have
never done a RECEIVE
from before and it worked just fine).
On 1/25/2018 2:57 PM, Chris Hoelscher wrote:
Dana - I do that all the time
SET BDY(GLOBAL).
RECEIVE HOLDDATA
ORDER(ORDERSERVER(ORDSRVR)
CLIENT(ISR@CLT)
CONTENT(ALL))
On 1/25/2018 4:31 PM, Jesse Lynch wrote:
If we attach to old keyring and leave Geotrust and Equifax in, we won't know
until after the 29th
if it works, correct?
Actually, as of right now (Thursday, January 25, 2018) the
eccgw01.boulder.ibm.com server still uses the GeotTrust root. But
EDU
> Subject: Re: Update: Server Certificates Expiring - Sooner!
>
> Thank Kurt and Phil. Got the new flash.
>
> Will upload as it says. We will have our security folks load it into ACF2.
> If we attach to old keyring and leave Geotrust and Equifax in, we won't know
> until aft
Dana - I do that all the time
SET BDY(GLOBAL).
RECEIVE HOLDDATA
ORDER(ORDERSERVER(ORDSRVR)
Thank you Kurt for re-stating that. Obviously I was confused by that fact as
evidenced by my original post on the subject.
I was wondering though, can you, using 'RECEIVE ORDER', just order and
download all current hold data? I do this frequently to get fixcat updates.
Dana
On Thu,
Kurt Quackenbush wrote:
> There are various formats that you can save a certificate in. You want a
> Base64-encoded X.509 format, often with extension .CER (I mention all those
> terms in case one of them rings an inkling). If wherever you're exporting it
> from offers options, try 'em all,
On 1/24/2018 3:04 PM, Pommier, Rex wrote:
I believe the correct answer is "none of the above". From what I've been
reading on these threads, the expired Cert was used on the front end, where processes are
set up on z/OS to order maintenance etc. directly from the MF. I think this is the
On 1/24/2018 8:29 PM, Phil Smith wrote:
Jesse Lynch wrote:
I tried this as you laid out. Didn't work. Haven't loaded it into our ACF2
DB yet but cert looks like garbage.
For Geotrust and Equifax we did save as and did ASCII Ftp. Tried both ways.
On Mainframe
the 1st and last rec looks
Jesse Lynch wrote:
>I tried this as you laid out. Didn't work. Haven't loaded it into our ACF2
>DB yet but cert looks like garbage.
>For Geotrust and Equifax we did save as and did ASCII Ftp. Tried both ways.
>On Mainframe
>the 1st and last rec looks like this. -BEGIN CERTIFICATE-
I tried this as you laid out. Didn't work. Haven't loaded it into our ACF2
DB yet but cert looks like garbage.
For Geotrust and Equifax we did save as and did ASCII Ftp. Tried both ways.
On Mainframe
the 1st and last rec looks like this. -BEGIN CERTIFICATE-
-END
I believe the correct answer is "none of the above". From what I've been
reading on these threads, the expired Cert was used on the front end, where
processes are set up on z/OS to order maintenance etc. directly from the MF. I
think this is the process that fell over, the pushing of the
>I believe your point is that if you do not intend for multiple userids
>to use the same certificate, then you don't need to connect it to your
>keyring with USAGE(CERTAUTH). Fair point.
Thanks Kurt, for your answer. I did not set up the download capability (and did
not read the book), and the
On 1/23/2018 12:51 AM, Barbara Nitz wrote:
While we're on the topic of ShopZ order downloads: Why do the SMPE books say to
make my private certificate (that I got from IBM for shopz) a CERTAUTH
certificate? I certainly didn't do that - it is just PERSONAL, and I made it
the default in the
Timothy Sipples wrote:
>4. *RIGHT CLICK* on the link, and select "Save Link As..."
Thats the missing link. I *LEFT CLICK* there initially from both FF and IE with
all the usual drama.
... left ... right ... left ... right ... hmmm, I'm confused... ;-D
>Hope that helps.
Certainly. Thanks.
You should be able to use Firefox to download the certificate file. Here
are the basic steps:
1. Navigate to the IBM Techdocs Web site and flash notice here:
http://www.ibm.com/support/techdocs/atsmastr.nsf/WebIndex/FLASH10884
2. Click on the PDF file link ("Certificate Authority.pdf") from
Nims,Alva John (Al) wrote:
>Since I use FireFox too, I had the same problem, so I went to
>http://www.digicert.com and did a search for "DigiCertGlobalRootCA" and got to
>this page: https://www.digicert.com/digicert-root-certificates.htm
>Then do a web page find with a portion of the serial
@LISTSERV.UA.EDU
Subject: Re: Update: Server Certificates Expiring - Sooner!
CAUTION: This email originated outside of the organization.
DO NOT CLICK links or open attachments unless you recognize the sender and know
the content is safe
>Hree, I thought it was just me doing something dumb in FF and IE. :-)
I second that. It kind of made me angry that the link opens the certificate in
IE, with readable (ASCII) characters in it. I expect a page with choices of how
to download! I also tried searching that digicert site for the
ark Zelden
Sent: Monday, January 22, 2018 1:37 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Update: Server Certificates Expiring - Sooner!
Hint for anyone that has as much trouble as I did:
What didn't work:
If I click on the URL in Firefox (my default browers), win-doze just says "t
uary 22, 2018 2:45 PM
To: IBM-MAIN@LISTSERV.UA.EDU
Subject: Re: Update: Server Certificates Expiring - Sooner!
On Mon, 22 Jan 2018 13:36:48 -0600, Mark Zelden wrote:
>
>What didn't work:
>
>If I click on the URL in Firefox (my default browers), win-doze just says "the
>ce
21 matches
Mail list logo