Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
EZD1044I z/OS Communications Server: IP Messages Volume 2 (EZB, EZD) SC27-3655-01 |
|
EZD1044I The ID ( id_X.500_string ) sent by the remote security
endpoint in the ID payload does not match the subject name or any
of the subject alternate names in the certificate used by the remote
security endpoint to generate its signature ExplanationThe IKE negotiation will probably fail because the identities in the ID payload and in the certificate do not match. This mismatch occurred during verification of the remote security endpoint identity while using digital signature mode authentication. Additional diagnostic messages that have the same message instance number will be issued to identify the impacted Security Association (SA). The message instance number precedes the message number in the log output and is used to group related messages from the IKE daemon. id_X.500_string is the X.500 string from the ID payload. System actionThe certificate cannot be used and the negotiation will probably fail; IKE daemon processing continues. Operator responseContact the system programmer. System programmer responseNotify the administrator of the remote security endpoint about this error and ask the administrator to ensure that they are using a certificate that matches the identity they are sending. Modulepki390.cpp Procedure nameNone. |
Copyright IBM Corporation 1990, 2014
|