Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
Using the end-user Web pages z/OS Cryptographic Services PKI Services Guide and Reference SA23-2286-00 |
|||||||||||||||||||||||||||||
This topic describes how the end user can use the PKI Services Web pages.
Note:
By default, the end user can perform the following tasks:
Table 1 lists the types of certificates
you can request:
Special consideration for using SAF templates: The templates that control processing of the SAF certificates listed in Table 1 perform only a subset of the function available natively in RACF through the RACDCERT TSO command or the ISPF panels. They are provided to enable a Web interface for requesting certificates from RACF for browsers and off-platform servers. They are not intended to be a complete replacement for RACF certificate function. Restriction: If you wish to generate a certificate for a server running on the local z/OS® system (in other words, for a system using the RACF database where the signing certificate resides), do not use the "One-year SAF server certificate" template. Instead, use the RACDCERT TSO command or ISPF panels directly. Using the "One-year SAF server certificate" template might cause the loss of the private key if the authenticating user ID is not the same as the user ID specified when generating the certificate request in RACF. |
Copyright IBM Corporation 1990, 2014
|