Informix

nested-group-icon.png

DB2

EAR & KMIP Remote Key Server

  • 1.  EAR & KMIP Remote Key Server

    Posted Wed September 30, 2020 11:51 AM
    IDS version 14.10.FC3 


    Having a problem configuring KMIP on a remote key server using SKLM.

    When I got to run onkstore I get the following:

    EAR ERROR: (-82964): Cannot retrieve the encryption key from (kmip:...).

    ERROR: KMIP RESULT REASON : 1.

    KMIP RESULT MESSAGE: 'CTGKM3040E Object with identifier ... cannot be found.'.

    Deleting the keystore '/usr/informix/ids1410.FC4W1/etc/grda_sth_ear.p12'.

     

    This is from the SKLM log:

    Data; CTGKM3040E Objec with identifier ... cannot be found.

    The Root-CA  & client .pem certificates are stored locally and Informix tech  has said this is on SKLM 
    but  SKLM is saying that this is a setup problem on the Informix side.

    We do have EAR running using local key keystore .. this is our first time in configuring a remote key server.


    anyone out there with any experience with KMIP & SKLM ? 

    Thanks,

    Mark 




    ------------------------------
    Mark Jalkiewicz
    ------------------------------