Using DFHXOPUS

The CICS supplied sample user-replaceable program, DFHXOPUS, accepts the RACF® USERID associated with the client certificate, if there is one.

If there is no RACF USERID associated with a certificate: If a USERID has not been found using these procedures, DFHXOPUS returns the USERID specified in the CICS system initialization DFLTUSER system initialization parameter.

The security exit program returns the user ID in the userid field of the communications area. If the user ID is less than 8 characters long, the exit program pads the field with blanks. Because a user ID is being returned, the return_code field is set to RCUSRID (X'01') .

If you write your own security exit program, it should return all fields other than userid and return_code unchanged, or unpredictable results may occur.