Your best bet is to use the java keytool utility by connecting to your CD host and port. This will print the cert presented when you connect
keytool -printcert -sslserver $host[:$port] Jerry Whitteridge Delivery Manager / Mainframe Architect GTS - Safeway Account 602 527 4871 Mobile [email protected] IBM Services IBM Mainframe Discussion List <[email protected]> wrote on 01/31/2020 10:54:52 AM: > From: Steve David <[email protected]> > To: [email protected] > Date: 01/31/2020 10:56 AM > Subject: [EXTERNAL] Connect Direct Secure + - Certificate in use > Sent by: IBM Mainframe Discussion List <[email protected]> > > Hi All, > We are planning to upgrade CD V4.8 to V5.2, we lost the key to open the key > database which used for secure+ encryption. We have used GSKKYMAN utility > to generate the certificate and signed by third party CA. > > SECURE.SSL.PATH.PREFIX =/usr/lpp/connectd/conn.kdb, > > We have couple of certificates mentioned in above path, out of which one is > expiring in Mar 2020 and other one in Nov 2020, Is there a way to find > which certificate is in use for SSL > Encryption? > > Thanks > Steve > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN > ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
