z/OS Communications Server: SNA Network Implementation Guide
Previous topic | Next topic | Contents | Contact z/OS | Library | PDF


Single-domain cryptographic sessions that use ICSF/MVS

z/OS Communications Server: SNA Network Implementation Guide
SC27-3672-01

To allow cryptographic sessions that use ICSF/MVS to be established within a single domain, install ICSF/MVS.

Use ICSF/MVS to file SLU keys on the CKDS as follows:
  • For each device-type LU that is to be used as the secondary end of a cryptographic session, code the following, where name is the name of the LU: 
    ADD LABEL(name) TYPE(EXPORTER) CLEAR SINGLE
    Note: SINGLE is needed only if the cryptographic support of the device-type LU does not support double length keys.

    This key generation utility program (KGUP) statement generates an exportable SLU key for the LU and adds it to the CKDS that is enciphered under the host master key. It also returns a clear SLU key. Enter the clear SLU key into the device.

  • For each VTAM® application program that is to be used as the secondary end of a cryptographic session, code the following, where name is the name of the application program: 
    ADD LABEL(name) TYPE(IMPORTER) CLEAR SINGLE
    Note: SINGLE is needed only if the cryptographic support of the device-type LU does not support double length keys.

    This KGUP statement generates an importable SLU key for the application program and adds it to the CKDS that is enciphered under the host master key.

Parent topic: Filing SLU keys for single-domain cryptographic sessions

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014