On Tue, 11 Mar 2014 05:54:24 -0700, Donald J. <dona...@4email.net> wrote:
>I am currently using openssl to create certificates for use with CICS >Web Services that work fine. I haven't read anywhere that >CICS Web Services supports authentication using HostIDMapping. I >associate the certificate with a userid using command: >RACDCERT ID(USERID1) ADD('USERID1.CERT1.PEM') WITHLABEL('USERID1test') >ICSF(*) TRUST >If I try to use a certificate with a HostIDMapping extension and no >certificate associated with the userid I get error message: >"CWXN A client certificate that maps to a valid userid is required." But did you complete the other setup steps to enable the use of HostIDMapping? See, for example, item 2 at http://publibz.boulder.ibm.com/cgi-bin/bookmgr_OS390/BOOKS/ichzd1c0/2.12.4?SHELF=all13be9.bks&DT=20110608113637 or http://preview.tinyurl.com/n63tfyf for details on the required SERVAUTH authority that CICS would need to make use of a HostIDMapping extension. (HostIDMapping, just like basic usage of Certificate Name Filtering, should be transparent to the application once all setup steps are completed.) -- Walt ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN