A valid master key must be loaded into at least one of the cryptographic coprocessors. Use the ICSF ISPF dialog, TKE, or the service element console to load the master key into each cryptographic coprocessor. A different master key may be loaded into coprocessors shared by PRSM Logical Partitions. Each LPAR is associated with a separate Domain Index to isolate cryptographic keys. For PCI coprocessors, the master key must be the same value as the Symmetric-keys Master Key (SYM-MK).
|