| Where allowed to run: All environments (*ALL) Threadsafe: Yes |
Parameters Examples Error messages |
The Translate Keystore File (TRNCKMKSF) command translates key values stored in the specified keystore files to another master key, or if the same master key is specified, to the current version of the master key. If an error occurs, processing halts immediately.
For more information on keystore files, refer to the Cryptographic services key management section of the Security category in the IBM Systems Information Center at http://www.ibm.com/systems/infocenter/.
Restrictions:
| Top |
| Keyword | Description | Choices | Notes |
|---|---|---|---|
| KEYSTORE | Keystore file | Values (up to 10 repetitions): Qualified object name | Required, Positional 1 |
| Qualifier 1: Keystore file | Name | ||
| Qualifier 2: Library | Name, *LIBL, *CURLIB | ||
| MSTKEY | Master key | 1-8, *SAME | Optional |
| Top |
Specifies the keystore files to use. Up to 10 keystore files can be specified.
This is a required parameter.
Qualifier 1: Keystore file
Qualifier 2: Library
| Top |
Specifies the id of the master key under which the key values will be translated.
This is a required parameter.
| Top |
Example 1: Translate Keystore Keys to the Current Version of the Master Key
TRNCKMKSF KEYSTORE(MYLIB/KEYSTORE1 MYLIB/KEYSTORE2)
This command re-encrypts all keys in keystore files KEYSTORE1 and KEYSTORE2 in library MYLIB that are encrypted under the old version of the master key to encryption under the current version.
Example 2: Translate Keystore Keys to Another Master Key
TRNCKMKSF KEYSTORE(MYLIB/MYKEYSTORE) MSTKEY(8)
This command re-encrypts all keys in a keystore file under the current version of Master Key 8.
| Top |
*ESCAPE Messages
| Top |