Creating certificates on z/OS

You can use the BMC AMI Enterprise Connector for Venafi UI to create certificates on z/OS.

Before you can use this feature, you must define a user ID that can configure certificates. For more information, see Setting ESM profiles.

To create a certificate

From the EC for Venafi UI, choose the type of certificate you want to create by selecting one of the following options from the main menu:
- New certificate—Select Create New Certificate > Create Certificate on z/OS.
- Based on existing certificate—Select Certificates > Show Certificates, and then next to the certificate that you want to use as a basis, click Select > Create Certificate on z/OS.

The Create new certificate window is displayed.

Configure the certificate as required.

Parameter	Description
Certificate Label	Unique identifier representing the certificate
Certificate Owner	Individual or entity responsible for managing the certificate
CN	Common name or host name for which the certificate is issued
O	Organization for which the certificate is issued
OU	Organizational unit for which the certificate is issued
L	Locality for which the certificate is issued
S	State for which the certificate is issued
C	Country for which the certificate is issued
Expiry Date	Expiration date of the certificate
Site certificate	Is the certificate a site certificate
ICSF certificate	Is the certificate stored in ICSF
Key algorithm	Algorithm used for encryption EC for Venafisupports both Rivest-Shamir-Adleman (RSA) and Elliptic Curve Cryptography (ECC) keys.
Post Implement Script	Script that can perform site-specific tasks after the successful creation of a certificate
Select LPAR	Target LPAR on which the certificate will be installed The Response box shows if the LPAR you select is active.

Click Submit.
The Response box shows if the certificate was created successfully.