To create a RACF® key ring, you must first generate a RACF CA certificate and a personal certificate for IBM® Integration Bus, then connect the certificates to the key ring.
Each RACF key ring has its own name up to 237 characters long and is associated with a user ID. A RACF key ring is connected to a set of personal certificates and trusted certificates that are stored in the RACF database. The RACF command RACDCERT is used to create and delete key rings and to connect or disconnect certificates to the key rings. RACF key rings are also called System Authorization Facility (SAF) key rings. SAF is an open standard to access security services.
To create a RACF key ring to be used by AT-TLS on behalf of IBM Integration Bus, complete the following steps.