Installing and configuring prerequisite products

After the MVS™ programmer installs PKI Services using SMP/E (but before team members set up PKI Services, see Running IKYSETUP to perform RACF administration through Creating the object store and ICL), your team needs to set up prerequisite products:
  • An HTTP server - to handle requests through a web server
  • WebSphere Application Server for z/OSz/OS® (optional)- provides the web server if you implement the PKI Services web application using Java™Server pages (JSPs)
  • LDAP - for posting certificates and CRLs
  • ICSF (optional) - to store the CA's private key in hardware, and to generate and store key pairs for PKI Services certificate requests
  • sendmail (optional) - for sending email notifications to certificate requestors and administrators
  • OCSF (optional) - used by the PKI Trust Policy (PKITP)
  • OCEP (optional) - used by the PKI Trust Policy (PKITP)
  • DB2® (optional) - can be used to store the object store and issued certificate list (ICL) if VSAM data sets are not used

You need to install and configure the HTTP server and LDAP only if you are setting up prerequisite products for PKI Services for the first time.

Parent topic: Planning