The message DFHSO0123 has a new insert that is used when CICS® identifies a revoked certificate during an encryption negotiation. CICS closes the connection immediately and issues the message.
A new message
DFHSO0128 is issued when the RACF profile specified in the CRLPROFILE system
initialization parameter is inaccessible. This could be because the CICS region
userid is not authorized to access the information in the profile or the named
profile does not exist or is incomplete. CICS continues to initialize without
CRL support.
A new message DFHSO0129 is issued when the LDAP
server that is specified in the RACF profile for certificate revocation lists
becomes inactive. CICS continues to initialize and CRL support is disabled.
CRL support can only be re-enabled by recycling CICS.