Steps for setting up the IKE daemon for digital signature authentication when the native certificate service is used

You can configure the IKE daemon to use its own certificate service and to use RSA signature mode authentication. Details for each step are in the corresponding subtopics.

Procedure

Perform the following steps to set up the IKE daemon for digital signature authentication when the native certificate service is being used:

  1. Define RACF® facilities and access controls.
  2. Define profiles to control access to the RACDCERT command.
  3. Create a RACF key ring for the user ID under which the IKED is to run.
  4. Install an X509 digital certificate to be used by the native IKE certificate service.
Parent topic: Step 5: Setting up the IKE daemon for digital signature authentication (optional)