[prev in list] [next in list] [prev in thread] [next in thread] 

List:       racf-l
Subject:    Re: Add new certificate quandary
From:       "Jones, Tom" <tkjones () TOMY ! COM>
Date:       2023-06-15 12:53:19
Message-ID: CH0PR02MB7962DB44B7CCC4367CCEE1E7D85BA () CH0PR02MB7962 ! namprd02 ! prod ! outlook ! com
[Download RAW message or body]

Per a reply from Wai Choi to a similar sequence a year ago, if the userid, Subject \
Distinguished Name, and public key match a previous cert it is replaced keeping the \
existing private key.

-----Original Message-----
From: Tony Riordan <Tony.J.Riordan@NAB.COM.AU>
Sent: Wednesday, June 14, 2023 10:25 PM
Subject: Add new certificate quandary

Hi,

Recently we experienced some unusual behaviour with the RACDCERT ADD command when we \
added a new certificate to RACF, it had the same OWNER as an existing certificate in \
that RACF database, however it replaced the existing certificate in that keyring and \
made the new certificate the default personal cert same as the existing certificate = \
quandary.

This is the expected behaviour of the ROLLOVER function which we have used in the \
past but we definitely didn't use that keyword, it was just a straight ADD cert into \
RACF command.

Has anyone else experienced this behaviour recently ?

Regards

Tony Riordan
Senior Consultant,
Mainframe Identity Services
Group Security
National Australia Bank Limited


________________________________

The information contained in this email communication may be confidential. If you \
have received this email in error, please notify the sender by return email, delete \
this email and destroy any copy.

Any advice contained in this email has been prepared without taking into account your \
objectives, financial situation or needs. Before acting on any advice in this email, \
National Australia Bank Limited (NAB) recommends that you consider whether it is \
appropriate for your circumstances. If this email contains reference to any financial \
products, NAB recommends you consider the Product Disclosure Statement (PDS) or other \
disclosure document available from NAB, before making any decisions regarding any \
products.

If this email contains any promotional content that you do not wish to receive, \
please reply to the original sender and write "Don't email promotional material" in \
the subject.

CONFIDENTIALITY NOTICE: Information contained in this e-mail transmission is intended \
only for the use of the named addressee (including all attachments), is the property \
of the sender and may be privileged, confidential and covered by the Electronic \
Communications Privacy Act, 18 U.S.C. Sections 2510-2521. If you are not the intended \
recipient, do not read, distribute or reproduce this transmission. If you have \
received this e-mail transmission in error, please notify us immediately of the error \
by return email and please delete the message from your system.


[prev in list] [next in list] [prev in thread] [next in thread]