Error message 600E 000001F7 appears when attempting to use SSL with IBM Host On-Demand

Troubleshooting

Problem

An error, 600E 000001F7, occurs when using a IBM Host On-Demand session with telnet SSL secured by a Verisign® certificate.

Diagnosing The Problem

The following error appears when attempting to start a secure SSL connection with a z/OS® telnet server using a Verisign certificate:

10:53:53 EZZ0053I COMMAND VARY OBEY COMPLETED SUCCESSFULLY
11:05:28 EZZ6034I TELNET CONN 00000063 LU **N/A** ACCEPTED 2323.
11:05:28 IPADDR..PORT 159.144.30.26..2048
11:05:33 EZZ6035I TELNET DEBUG CLIENT IPADDR..PORT 159.144.30.26..204
11:05:33 CONN: 00000063 LU: MOD: EZBTTSMT
11:05:33 RCODE: 600E-00 SSL/TLS handshake Timed out.
11:05:33 PARM1: 000001F7 PARM2: PARM3: GSK_SECURE_SOCKET_INIT

Resolving The Problem

Add both the Verisign Root CA and Intermediate CA certificates to the key ring in RACF.

Note for Intermediate certificates:

As well as issuing SSL Certificates, the Trusted Root CA certificate can be used to create another certificate, which in turn will then be used to issue SSL Certificates.
As the Intermediate Certificate is issued by the Trusted Root CA, any SSL Certificates issued by the Intermediate Certificate inherit the trust of the Trusted Root, effectively creating a certification chain of trust.

[{"Product":{"code":"SSS9FA","label":"IBM Host On-Demand"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Component":"--","Platform":[{"code":"PF035","label":"z\/OS"}],"Version":"10.0","Edition":"All Editions","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]

Tips

Error message 600E 000001F7 appears when attempting to use SSL with IBM Host On-Demand

Troubleshooting

Problem

Diagnosing The Problem

Resolving The Problem

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?