Optionally updating PKI Services environment variables
- You are configuring PKI Services for the first time.
- You are adding an additional CA domain.
- You want to send email notifications (for rejected certificate requests or certificates that are ready for retrieval or expiring) and you did not use the default location for sendmail (/usr/sbin/sendmail).
- You intend to use automatic certificate renewal.
- You are implementing an autorenew exit.
- You intend to use Java™Server pages (JSPs) instead of REXX CGIs for the PKI Services web pages.
- A sample environment variables file, pkiserv.envars (by default in /usr/lpp/pkiserv/samples/)
- SYS1.PROCLIB member PKISERVD (You can use the ENVAR parameter to point to the environment variables file.)
You can use pkiserv.envars to set environment variables for the PKI Services daemon. This file contains most of the environment variables needed to run the daemon.
- The install directory for PKI Service (/usr/lpp/pkiserv)
- The message level
- The location for sendmail (/usr/sbin/sendmail)
Guideline: If you need to make changes to the pkiserv.envars file, copy the file to another directory (such as /etc/pkiserv) and make changes only to the copy.
- Environment variables directory
- File name
- Job output class
- Region size
- Standard output
- Standard error
- Time zone
Because of the limitation of the number of characters allowed in the PARM=operand on the JCL EXEC card, take care to ensure that the total length of the environment variables directory and file name, TZ value, and stdout and stderr redirection values do not exceed the 100 character maximum.
You must specify any environment variables that PKI Services requires either in the PKISERVD procedure or in the environment variables file (pkiserv.envars). Guideline: Make your additions and changes to the environment variables file, rather than to the PKISERVD procedure.