Note on usage
Function: Delete a key pair set
User group: FT administrator
Alias name: FTDELKEY
Functional description
Using the DELETE-FT-KEY-SET command, you are deleting the key pair set of a reference. The key pair consists of a private key, which is internally administered by openFT, and a public key.
Public keys are stored on the configuration user ID of the openFT instance (default: $SYSFJAM) under the name:
SYSPKF.R<key reference>.L<key length>
The key reference is a numeric designator for the version of the key pair. For each reference there are three keys with lengths of 768, 1024 and 2048 bit respectively. Since openFT version V12.1C60 there are additionally two key lengths 3072 and 4096 bit.
A key pair set should only be deleted if no partner system uses the corresponding public key any longer. This means that, after creating a new key pair set using CREATE-FT-KEY-SET, the new public key should be made available to all of the partner systems in which the local system is to be authenticated.
There should always be at least one key pair set in your openFT instance, otherwise all requests will be carried out in unencrypted form.
Format
DELETE-FT-KEY-SET / FTDELKEY |
REFERENCE = <integer 1..9999999> |
Operands
REFERENCE = <integer 1..9999999>
Allows selection of the key pair set to be deleted. You will find the reference in the name of the public key file (see above).
Command return codes
(SC2) | SC1 | Maincode | Meaning |
83 | 32 | CMD0221 | Internal error. |
2 | 0 | FTR1030 | Warning: last key pair deleted. |
32 | 64 | FTR1032 | Last key pair must not be deleted. |
35 | 64 | FTR1035 | Command only permissible for FT administrator. |
37 | 64 | FTR1037 | Key reference unknown. |
SC1/2 = Subcode 1/2 in decimal notation For additional information, see section “Command return codes”. | |||
Example
Delete the key pair set with the public keys
$SYSFJAM.SYSPKF.R137.L768, $SYSFJAM.SYSPKF.R137.L1024 and $SYSFJAM.SYSPKF.R137.L2048:
/DELETE-FT-KEY-SET REF=137