Creating the certificates and key rings

This section documents the steps required to create the certificates and key rings necessary for z/OS® users of IBM® MQ Advanced Message Security, using a RACF® Certificate Authority (CA).

A scenario of a sending application and a receiving application is used to explain the required steps.

In the examples that follow, user1 is the originator of a message and user2 is the recipient. The user ID of the IBM MQ Advanced Message Security address space is WMQAMSD.

All of the commands in the examples shown here are issued from ISPF option 6 by the administrative user ID admin.