You get a message that says that the system cannot encrypt your keys because the QRETSVRSEC value must be set to 1.
- Symptom:
- The following error message appears:
- Possible resolution:
- QRETSVRSEC is a system value that indicates whether your system can store encrypted keys on it. If this value is set to 0, then preshared keys and the keys for the algorithms in a manual connection cannot be stored in the VPN policy database. To fix this problem, use a 5250 emulation session to your system. Type wrksysval at the command line and press Enter. Look for QRETSVRSEC in the list and type 2 (change) next to it. On the next panel, type 1 and press Enter.