EZD1083I

Explanation
 The local IKE daemon is attempting to initiate
a phase 1 Security Association  (SA) negotiation, but the local policy
specifies that it cannot be the  initiator.  
 p1_action_name is
the name of the action. In the policy agent configuration file, p1_action_name is
the name of the KeyExchangeAction statement associated with this negotiation.
When configured with the IBM® Configuration
Assistant for z/OS® Communications
Server, p1_action_name corresponds to the name
of a Connectivity Rule in the GUI. p1_action_name also
contains a numeric suffix appended to the Connectivity Rule name to
guarantee uniqueness.

System action
 The SA negotiation failed; IKE daemon processing
continues.

Operator response
 Check the IKE daemon's initiation role for
this SA.
 When configured without the IBM Configuration Assistant for z/OS Communications Server, if the local IKE
daemon should be able to initiate the negotiation for this SA,  then
change the daemon's HowToInitiate parameter in the appropriate KeyExchangeAction
statement to main or aggressive.  See the information
about the Policy Agent and policy applications in z/OS Communications Server: IP Configuration
Reference for more  information about configuring 
policy.
 When configured with the IBM Configuration
Assistant for z/OS Communications
Server, if the local IKE daemon should be able to  initiate the negotiation
for this SA,  then edit the corresponding Connectivity Rule GUI and
change the Initiator mode setting on the Advanced IPSec: Dynamic Tunnels:
Key Exchange Settings panel to either Main or Aggressive.
See the online helps in the GUI for additional information.

System programmer response
 None.

Module
 policy.cpp

Procedure name
  None.