Defining the Password Associated with the SSL Key Database File

To define a password associated with a key database, you must use the Platform Server user profile utility, PROFSSL, located in the Platform Server JCL library.

When using the PROFSSL utility:

The local user ID must be defined as $SSLDB, while the remote user ID can be any user ID.
Any IP address of any node name can be used in this definition. This IPADDR defined here is not used, but must be defined for the job to run successfully. NODE can be used in place of IPADDR, and it is also not used.
If you are using a RACF RACDCERT command to create a key ring file, the REMOTE_PASS parameter must be defined as NULL in upper case. Otherwise, you must specify the password for the key database.

Note: You must be a Platform Server administrator to add user ID $SSLDB to the Platform Server user profile database.

See the following example of JCL that can be used to add the $SSLDB user profile:

//jobcard JOB  ,'CFUSION',MSGCLASS=X,REGION=5M,CLASS=A
//STEP1 EXEC PGM=FUSPROF,PARM='SERVER=CFUSION'                       
//STEPLIB  DD  DSN=FUSION.LOADLOAD,DISP=SHR                         
//SYSPRINT DD  SYSOUT=*                                              
//SYSIN    DD  *                                                     
  TYPE=ADD              
  IPADDR=127.0.0.1             This address is not used
  LOCAL_USER=$SSLDB    
  REMOTE_USER=$SSLDB   
  REMOTE_PASS=NULL             Specify NULL for RACF KEY RING
  **REMOTE_PASS=ssldbpassword  Specify password for key database     
//