RACF Certificate expiration
RACF Certificate expiration
What is the process to update the expiration date of the RACF certificate (used by saf-ssh-agent) for SSH authentication? Is it possible to update the expiration date without needing to generate and deploy a new public key? Thanks.
Re: RACF Certificate expiration
There is an example of doing this in the User's Guide:
http://dovetail.com/docs/sftp/auth.html#auth-racf (at the end of the page)
Unfortunately, this (the easy way) has to be done before the key expires.
Otherwise, I am not certain of the process, but in theory it should be possible by extracting the private key and constructing a new self-signed certificate with it.
Note: this would assume that the private key were not stored in ICSF (PKDS). Apparently those cannot be exported.
http://dovetail.com/docs/sftp/auth.html#auth-racf (at the end of the page)
Unfortunately, this (the easy way) has to be done before the key expires.
Otherwise, I am not certain of the process, but in theory it should be possible by extracting the private key and constructing a new self-signed certificate with it.
Note: this would assume that the private key were not stored in ICSF (PKDS). Apparently those cannot be exported.