BlueZone Security ServerEnabling SSL on z/OSCreating self-signed certificates

Creating self-signed certificates

  1. Select Option 6 to create a self-signed certificate.
  2. Select one of the CA certificate types, for example 1 – CA with 1024 RSA key.
  3. Enter a label for the certificate. For example, SigningCA.
  4. Enter the certificate information:
    1. Common name, for example Signing Certificate
    2. Organization Unit, for example Rocket Software
    3. Organization, for example PD
    4. City
    5. State
    6. Country
    7. Number of days that the certificate is valid. The certificate can be valid from 1 – 9999 days.
  5. Select Option 1 to manage keys and certificates.
  6. Select SigningCA.
  7. Select Option 7 to export certificates and keys.
  8. Select Option 3 or Option 4.
  9. File name SigningCA.p12.
  10. Enter a password twice.
  11. Enter 0 for export encryption.
  12. Change to your PC.
  13. FTP the .p12 file to the PC using binary if option 3 was used to export or ASCII is option 4 was used.
  14. Open Internet Explorer:
    1. Click Tools Internet Options.
    2. Select the Contents tab.
    3. Click Certificates.
    4. Click Import.
    5. Click Next.
    6. Select file that was FTPed to the PC.
    7. Click Next.
    8. Type the certificate password and select the Mark this key as exportable check box.
    9. Click Next.
    10. Place the certificate in the Trusted Signing store.
    11. Click Next.
    12. Click Finish.
Parent topic: Enabling SSL on z/OS