PQ84587: BBOCR2FA AND BBOCR2FD WEBSPHERE W502000 MISSING DOCUMENTATION | |||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description When generating the jobs for ND and BaseApp at W502000, the JCL for BBOCR2FA (baseApp) or BBOCR2FD (ND) are generated and listed in the CNTL dateset. There are no instructions associated with the JCL, because of the way JESSE is configured to use the RACF keyrings, therefore the two jobs are not needed. .. Customer can get confused, because jobs were required for w50100 and w501002.Local fix Problem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V5.0 for z/OS * **************************************************************** * PROBLEM DESCRIPTION: The documentation for the BBOCR2FA * * and BBOCR2FD jobs is missing from the * * installation and configuration * * documentation (BBOSSINS and * * BBOSSINS) generated by the * * installation and configuration ISPF * * customization dialog. * **************************************************************** * RECOMMENDATION: * **************************************************************** Some customers who had existing WebSphere Application Server Version 5.0 for z/OS installations, but had not previously configured installations, wanted to know if it is necessary to run the BBOCR2FA and BBOCR2FD jobs. In WebSphere Application Server Version 5 for z/OS, the installation and configuration process was changed to store Java Secure Sockets Extension (JSSE) and Secure Sockets Layer (SSL) digital certificates in Resource Access Control Facility (RACF) keyring instead of a a keystore in the Hierarchical File System (HFS). The BBOCR2FA and BBOCR2FD jobs were run as part of the installation and configuration process to copy the certificates and keys from RACF to a keystore in HFS. Do not run the BBOCR2FA and BBOCR2FD jobs if you use the default configuration. Documentation for the jobs was removed.Problem conclusion The documentation for the installation and configuration process, contained in BBOSSINS and BBOCCINS, has been updated. The update reads as follows for both BBOSSINS and BBOCCINS: ATTENTION: This job is optional. The default configuration is to store Secure Sockets Layer (SSL) and Java Secure Socket Extension (JSSE) keys and certificates in RACF keyrings. Do not run this job if you are using the default configuration for SSL or JSSE keys and certificates. Run this job only if you are planning to change the JSSE to use certificates and keys that are stored in a keystore file in the HFS instead of keys that are stored in a RACF keyring. If you want to change JSSE to use certificates and keys that are stored in a keystore file in the HFS, you must use the WebSphere Application Server Administrative Console to make the change. From the Administrative Console select Security > SSL From this panel, you can either create a new JSSE repertoire, or modify an existing JSSE repertoire, to use a keystore in the HFS. Run the BBOCR2FA and BBOCR2FD jobs only if you do not want to store JSSE or SSL certificates or keys in RACF and want to store the certificate or keys in a keystore within HFS. APAR PQ84587 is associated with SERVICE LEVEL W502005 of WebSphere Application Server V5.0 for z/OS.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: PQ89463 Modules/Macros
Publications Referenced
|
Document Information |
Current web document: swg1PQ84587.html
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ84587
IBM Group: Software Group
Modified date: May 27, 2004
(C) Copyright IBM Corporation 2000, 2009. All Rights Reserved.