Disabling AES 256 Encryption

Document ID : KB000012873
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Need to apply RO86945 but we are not ready to convert to AES 256 encryption. Is there a way not to use AES 256 encryption in CA Top Secret?

Answer:

The CA Top Secret Control Option that determines what kind of password encryption is used is the 'ENCRYPT' control option which is documented at:

https://docops.ca.com/ca-top-secret-for-z-os/16-0/en/using/issuing-commands-to-communicate-administrative-requirements/keywords/encrypt-keywordenable-or-disable-levels-of-encryption

Switching to a different encryption requires the security file to be converted with TSSXTEND.