Ken,
Great. Thank you. Have helped hundreds of client setup SSL with SFTP, so we are in familiar territory.
I suspect the keys you have in the directory are x509 formatted certificates which TSS should be able to import into the security file.
We need to FTP the certificates to a Variable Blocked DSORG=PS dataset. Depending on the v509 format we will need to FTP in binary or ASCII which is discussed in the following link.
http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec484087.aspx
I would create 2 datasets. FTP binary to one dataset and then ASCII to the other if you don't know which x509 format is being used.
Once you have them in a dataset, issue a TSS CHKCERT DCDSN(datasetname) against both of them. One will get an invalid certificate format message so we will know that is not the one we will be using. The other should display the attributes of the certificates and that is the dataset we will use to import to the security file.
Finally issues the following command:
TSS ADD(CERTAUTH) DIGICERT(digicertname) DCDSN(datasetname) <--for a root certificate.
TSS ADD(CERTSITE) DIGICERT(digicertname) DCDSN(datasetname) <--for user/personal/client certificate
TSS ADD(CERTSITE) DIGICERT(digicertname) DCDSN(datasetname) PKCSPASS(password) <--for user/personal/client certificate that is password protected.
Issue a TSS LIST(CERTSITE) DIGICERT(digicertname) TSS LIST(CERTAUTH) DIGICERT(digicertname) to confirm that the certificate was added to the security file.
If you have problems, please open an ticket with support and we can pursue it in private. We don't want to be posting confidential site information here for everyone to see.
Regards,
Joseph Porto - CA Level 1 Support