Problem Note 63263: AES encryption fails when connecting to SAS® servers in z/OS environments
 |  |  |  |  |
Under z/OS, connections to SAS servers using Advanced Encryption Standard (AES) encryption fail under the following conditions:
- You run a z14 machine or later.
- You use the IBM Integrated Cryptographic Service Facility (ICSF) with a CPACF status of 10.
When you encounter this issue, you experience these symptoms. From SAS clients such as SAS® Enterprise Guide®, you see the following message in the client log:
From SAS servers with enhanced logging enabled for App.tk.eam at invocation of the SAS server, you see the following:
(more ICSFSTATs)
getICSFstatus: ICSFSTAT element 4 is "10 "
(more ICSFSTATs)
getICSFstatus: CPACF status is 1
Note: To obtain enhanced logging, see the "Enable More Detailed Logging for Server Troubleshooting" section in SAS® 9.4 Intelligence Platform: System Administration Guide, Fourth Edition. The LOGCONFIGLOC= option must be set appropriately at invocation of the SAS server to obtain the ICSF element status values.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | SAS/SECURE | z/OS | 9.4 | 9.4 | 9.4 TS1M0 | 9.4 TS1M4 |
| z/OS 64-bit | 9.4 | 9.4 | 9.4 TS1M0 | 9.4 TS1M4 | ||
A fix for this issue for SAS/SECURE 9.41_M3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/D9J.html#63263A fix for this issue for SAS/SECURE 9.41_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/D7W.html#63263A fix for this issue for SAS/SECURE 9.41_M1 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/D7X.html#63263A fix for this issue for SAS/SECURE 9.4_M2 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/D7Y.html#63263| Type: | Problem Note |
| Priority: | medium |
| Date Modified: | 2019-01-09 08:58:34 |
| Date Created: | 2018-11-26 17:30:44 |