Thank you Jon for replying.
Infact, I am using Jesse's repository to achieve IWS cert renewal automation
I was thinking of doing it 2 ways
1) Import the new certificate with
QykmImportKeyStore and then assign to IWS with QycdUpdateCertUsage
OR
2) Get new certificate. Renew the existing certificate by this new certificate using QycdRenewCertificate and then assign to IWS with QycdUpdateCertUsage
Now I am trying work on 2nd way. But here now i am facing issue with API
AS400Message (ID: CPF9872 text: Program or service program QYCDRNWC in library QICSS ended. Reason code 2.):com.ibm.as400.access
AS400Message@95ab79de
java.io.IOException: DCM API call failure
at com.github.ibmioss.dcmtools.utils.DcmApiCaller.runProgram(DcmApiCaller.java:287)
at com.github.ibmioss.dcmtools.utils.DcmApiCaller.callQycdRenewCertificate_RNWC0300(DcmApiCaller.java:141)
at com.github.ibmioss.dcmtools.CertRenewer.renewCert(CertRenewer.java:56)
at com.github.ibmioss.dcmtools.CertRenewer.doRenew(CertRenewer.java:46)
at com.github.ibmioss.dcmtools.DcmRenewCmd.main(DcmRenewCmd.java:45)
Message CPF9872 description says
2--A pointer was used, either directly or as a basing pointer, that has not been set to an address
Any idea on this failure ?
------------------------------
Sarfaraj Pirjade
------------------------------
Original Message:
Sent: Tue September 27, 2022 02:20 PM
From: Jon Paris
Subject: Import Certificate Store API - QykmImportKeyStore
I am not sufficiently au fait with Certs to know if this will help or not but ...
I was able to deal with a number of cert store issues by using this new tooling from Jesse Gorzinski https://github.com/ThePrez/DCM-tools#dcmimport - he is expanding its capabilities all the time.
------------------------------
Jon Paris
Original Message:
Sent: Sat September 24, 2022 05:14 AM
From: Sarfaraj Pirjade
Subject: Import Certificate Store API - QykmImportKeyStore
Hello,
I am trying to use DCM API QykmImportKeyStore for importing a server/client certificate. But it is always getting imported as CA Only certificate. Is this API no more valid in V7R4.
Can anyone please advise :)
------------------------------
Sarfaraj Pirjade
------------------------------