The following steps assume creating a separate key database for the Ironstream certificates and keys. If you wish to use an existing key database, consult the IBM documentation for creating mainframe and client certificates and keys using an existing database. If you are receiving certificates from a third-party certificate supplier, they must be imported into an existing key database which will be specified in Step 10.
This procedure requires that IBM "Cryptographic Services System SSL" and "Cryptographic Services Security Level 3" packages are installed on the mainframe LPAR.