On Wed, Feb 23, 2011 at 5:12 PM, Hayim Sokolsky <hsokol...@dtcc.com> wrote:
> > It sounds like you've touched most if not all of the bases. > > I would review the certificate, to check on the private key of the SITE > certificate, and see if ICSF is involved as well. (CSFKEYS, CSFSERV in > RACF.) Check to make sure the certificate is trusted on both sides of the > fence. Last but not least, I would recommend running SAFTRACE at this > point for the Address Space(s) in question. That will tell you what's > going on under the covers, and what is failing. > > Hayim > _____________________________________ > Hayim Sokolsky, CISSP > Mainframe Security Architect > DTCC Corporate Information Security > 18301 Bermuda Green Dr, MS 1-CIS > Tampa FL 33647-1760 > > Tel. (813) 470-2177 > > Thanks for your input. Both the local CA certificate and the SITE certificate have the following attribute - Private Key Type: Non-ICSF Which certificate should I be exporting to the client end, the local CA one or the SITE one. Jim McAlpine ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
