Cm error while updating java
To access the private key belonging to SITE or CERTAUTH in a keyring, you can use either the FACILITY class or the RDATALIB class. using the FACILITY class, you need(at least): READ access rights on IRR. For more info check this link or or the RACF and digital certificates section the full IBM guide B.
Using the RDATALIB class, you need CONTROL access rights on .. This way is simpler and worked for other people having this issue.
When running scripts apiml_to trust zosmf certificate, the error message is still use the default value(IZUKeyring. ZMZ2 is not available or no authority to access the private key It is not possible to read z/OSMF keyring IZUSVR/IZUKeyring. IZUDFLT --zosmf-userid IZUSVR Hello Jing, and thank you for pointing this out.
It will not fall back to FACILITY class to check even it has set up correctly. You need to run this command as user that has access to the z/OSMF keyring: cd /Z2/var/zowert/1.0.0/api-mediation scripts/apiml_--action trust-zosmf --zosmf-keyring IZUKeyring.