Optionally, create SDOPTS.REC file

In some environments, it might be necessary to use an SDOPTS.REC file to ensure that the AZFSIDP1 plug-in can correctly communicate with RSA Authentication Manager.

About this task

The SDOPTS.REC file adheres to the following syntax:

LPAR_NAME=<SYSTEM/LPAR NAME>
CLIENT_IP=<IP v4 Address Override>
LPAR_NAME=<SYSTEM/LPAR NAME of another system in SYSPLEX>
CLIENT_IP=<IP v4 Address Override for second LPAR>

where LPAR_NAME is the uppercase (case is sensitive) SYSNAME value that was specified when the system was IPL'd. You can use the z/OS® command D SYMBOLS to determine the value from the &SYSNAME symbol.

In certain situations, such as a multi-homed LPAR, or a VIPA, it is possible that the host IP Address that is auto-detected by the AZFSIDP1 plug-in does not match the IP address actually used for outgoing traffic. In such cases, use the CLIENT_IP override to manually specify the IP Address that AZFSIDP1 should use. (Currently, only IPV4 addresses are supported in the SDOPTS.REC file.)

Procedure

Allocate the SDOPTS.REC data set with the following attributes. The user ID of the IBM® MFA services started task must have read access to this data set.
- DSORG
  - PS
- DCB:
  - RECFM FB
  - LRECL 72
  - BLKSIZE 72
- SPACE:
  - TRKS
  - Primary 1
  - Secondary 1
Verify the change.
Create SDOPTS.REC with the needed parameters.
SDOPTS.REC must not include sequence numbers.
Save your changes.