CSQ0214E … CSQ0COPN Message protection initialization failed, return code 12, reason 0335300E
This can have other messages associated with it
- CSQ0217E … CSQ0COPN Failed to process object ‘recipient public key certificate in recipient keyring’
- CSQ0217E … Failed to process object ‘pkcs7 enveloped data message’
CSQ0217E … CSQ0COPN Failed to process object ‘recipient public key certificate in recipient keyring’
Colin’s comments on certificate not found
0335300E is certificate not found
Certificate not in the xxxxAMSM’s keystore
I had
setmqspl -m CSQ9
-p AMSQ
-s SHA256
-e AES256
-a CN=COLIN,O=SSS
-a “CN=testuser, O=aaaa, C=GB”
-r “CN=testuser, O=aaaa, C=GB”
-r CN=COLIN,O=SSS
But the certificate for CN=COLIN,O=SSS was not in the xxxxAMSM’s keyring.
The messages do not tell you which certificate was not found.
Certificate was in the keystore – but not trusted
I had forgotten to use
RACDCERT id(COLIN) ALTER(LABEL(‘AMS’))TRUST
and so the certificate was non trusted.
CSQ0217E … Failed to process object ‘pkcs7 enveloped data message’
A userid tried to get an encrypted message, but the message was not encrypted for this userid; there was no encrypted key for this DN and certificate.