/****************************************/
/*                                      */
/*        RENEW Internal CA Certs       */
/*                                      */
/****************************************/

/****************************************/
/*                 Links                */
/****************************************/

IBM Health Checker RACF checks (IBMRACF): https://www.ibm.com/support/knowledgecenter/SSLTBW_2.4.0/com.ibm.zos.v2r4.e0zl100/racfcertificate.htm
Renewing a certificate steps: https://www.ibm.com/support/knowledgecenter/en/SSLTBW_2.4.0/com.ibm.zos.v2r4.icha700/sec_racf/icha700/rskloc.htm


/****************************************/
/*                 RACF                 */
/****************************************/ 

/*                BATCH                 */

//RACFADM  EXEC PGM=IKJEFT01,REGION=0M
//SYSTSPRT DD SYSOUT=*                
//SYSTSIN  DD *
RACDCERT LIST(LABEL('USER1 CERT'))     
RACDCERT ID(USER1) GENREQ(LABEL('USER1 CERT')) +
 DSN('SYSADM.CERT.REQ')
RACDCERT ID(USER1) GENCERT('SYSADM.CERT.REQ') +
 SIGNWITH(CERTAUTH LABEL('INTERMEDIATE TEST')) +
 NOTAFTER(DATE(2030-12-30))
RACDCERT LIST(LABEL('USER1 CERT'))  
/*
 

/*                OUTPUT                */ 
                                                     
READY                                                                  
RACDCERT LIST(LABEL('USER1 CERT'))                                   
                                                                       
Digital certificate information for user USER1:                      
                                                                       
  Label: USER1 CERT                                                  
  Certificate ID: 2QfR5MjSwfDx0eTI0sHw8UDDxdnj                         
  Status: TRUST                                                        
  Start Date: 2021/03/18 00:00:00                                      
  End Date:   2022/03/18 23:59:59                                      
  Serial Number:                                                       
       >01<                                                            
  Issuer's Name:                                                       
       >CN=TESTINTERCERT.OU=MYCO.C=US<                                 
  Subject's Name:                                                      
       >CN=USER1TEST.OU=MYCO.C=US<                                   
  Signing Algorithm: sha256RSA                                         
  Key Type: RSA                                                        
  Key Size: 2048                                                       
  Private Key: YES                                                     
  Ring Associations:                                                   
  *** No rings associated ***  
  
READY                                                                  
RACDCERT ID(USER1) GENREQ(LABEL('USER1 CERT')) DSN('SYSADM.CERT.REQ')
READY                                                                  
RACDCERT ID(USER1) GENCERT('SYSADM.CERT.REQ') SIGNWITH(CERTAUTH LABEL('INTERMEDIATE TEST')) NOTAFTER(DATE(2030-12-30))
READY                                                                  
RACDCERT LIST(LABEL('USER1 CERT'))                                   
                                                                       
Digital certificate information for user USER1:                      
                                                                       
  Label: USER1 CERT                                                  
  Certificate ID: 2QfR5MjSwfDx0eTI0sHw8UDDxdnj                         
  Status: TRUST                                                        
  Start Date: 2021/03/18 00:00:00                                      
  End Date:   2030/12/30 23:59:59                                      
  Serial Number:                                                       
       >02<                                                            
  Issuer's Name:                                                       
       >CN=TESTINTERCERT.OU=MYCO.C=US<                                 
  Subject's Name:                                                      
       >CN=USER1TEST.OU=MYCO.C=US<                                   
  Signing Algorithm: sha256RSA                                         
  Key Type: RSA                                                        
  Key Size: 2048                                                       
  Private Key: YES                                                     
  Ring Associations:                                                   
  *** No rings associated ***