z/OS Cryptographic Services PKI Services Guide and Reference
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


IKYS016I

z/OS Cryptographic Services PKI Services Guide and Reference
SA23-2286-00

IKYS016I
Error 0xnnnn getting the {default | RA | CA} key

Explanation

PKI Services is initializing and calling System SSL services to get one of its private keys from the key ring. The obtain failed. The problem is related to one of the following, as indicated in the message:
  • default - the CA certificate private key
  • RA - the RA certificate private key
  • CA - a former CA certificate that was re-keyed and rolled over

System action

If either the default or RA key cannot be obtained, PKI Services stops.

If issued for a former CA certificate, PKI Services continues initialization. However, SCEP processing might be disabled if the RA certificate cannot be signature verified.

System programmer response

Look up the error code in z/OS Cryptographic Services System SSL Programming. Diagnose the problem indicated by the return code. Restart PKI Services once corrections are made.

Parent topic: Messages

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014