I suspect that one you listed first is superfluous but no matter.
Does SMPE really want a client certificate? Where did you get it from? What
signed it?
If SMPE really wants that client certificate then you should make it the
default so SMPE can find it.
Are all of those certs on the ring trusted? Untrusted certificates "don't
exist" for handshake purposes.
What do you get if you do a RACDCERT LISTCHAIN on SMPE Client Certificate?
Charles
On Mon, 12 Jun 2023 17:04:33 -0500, Tom Longfellow
<tom.longfel...@courts.state.md.us> wrote:
>Thank you Charles.
>
>you have just spelled out every single step that I have already performed.
>The named labels, the download steps (Only the new Intermediate was
>required)., the upload steps, the Cert adds (yes trusted). the keyring
>connect to the same keyring used for the last successful loads.
>I have gone further to display the cert by the long character string value.
>and displayed the cert only to have it tell me "Incomplete" but not why.
>
>It is annoying when you do the same thing that used to work.. that you have
>been assured WILL work.... and it DOES NOT work.
>
>For those of you playing the home game. Here are some RACF displays
>
>=-=-=-=
>racdcert CERTAUTH list(label('GLOBALG2.TLS.RSA.SHA256.#2020CA1'))
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
