Associating a RACF user ID with a certificate

The client certificate can be used to determine the user ID for the CICS® transaction only if the certificate is associated with a RACF® user ID.

You can associate a certificate with a RACF user ID in two ways:

You can add certificate information for your own user ID if you have READ access to the IRR.DIGTCERT.ADD profile in the FACILITY class. You can add certificate information for other user IDs if you have UPDATE access to the IRR.DIGTCERT.ADD profile in the FACILITY class or if you have RACF SPECIAL authority.

For further information on the RACDCERT command, including the format of data allowed in the downloaded certificate dataset, see z/OS Security Server RACF Command Language Reference