as suggest in pmr 75566,650,758.
"ICSF - PKCS11 Token Browser Utility"
Attribute FIPS140 can not be passed by using RACDCERT racf command, so it is taken default value that is FALSE.
So, since it seems very complex make the required changes to RACF to allow you to create a PKCS #11 certificate with the FIPS140 attribute set to TRUE, the easiest way would be to modify the "PKCS11 Token Browser Utility" panel of the "TSO CSF" program so that it is possible to change the value of the FIPS140 field from FALSE to TRUE.
Why is it useful?
|Who would benefit from this IDEA?|
How should it work?