Steps for renewing a self-signed certificate in RACF

Perform the following steps to renew an expiring self-signed certificate in RACF® using the same private key. This example shows the commands a TSO user YELENA might issue to renew her self-signed certificate.
  1. Create a certificate request based on the expiring certificate and store it in an MVS™ data set 'YELENA.CERT.REQ' by executing the following command:
    RACDCERT ID(YELENA) GENREQ(LABEL('Yelena's Cert')) 
   DSN('YELENA.CERT.REQ')

    ______________________________________________________________________

  2. Execute the following command to renew and replace the expiring self-signed certificate:
    RACDCERT ID(YELENA) GENCERT('YELENA.CERT.REQ') 
   SIGNWITH(LABEL('Yelena's Cert'))

    ______________________________________________________________________

You have now renewed an expiring self-signed certificate using the same private key. All information in the certificate is updated to reflect the renewal, including the key ring connection information.