A user certificate is used by the SMP/E RECEIVE ORDER command to uniquely identify you to the IBM® Automated Delivery Request server. As described previously, the user certificate was generated for you by ShopzSeries, downloaded to your workstation, transferred to your z/OS® system as binary data, and stored as a sequential data set. From the sequential data set, the certificate can be stored in the RACF® data base using the following RACF command:

   RACDCERT ID(certificate-owner) ADD('user.certificate.dataset.name') +
   WITHLABEL('SMPE Client Certificate') PASSWORD('pass phrase') TRUST

where certificate-owner is the user ID that you choose to own the certificate, user.certificate.dataset.name is the data set name used to store the PKCS12 certificate package obtained from ShopzSeries, SMPE Client Certificate is the label you choose to identify this certificate (32 characters or less), and pass phrase is the encryption pass phrase you specify when generating the PKCS12 certificate package on ShopzSeries.

After you add the certificate to the RACF data base, you must connect it to the key ring:

   RACDCERT ID(ring-owner) CONNECT(LABEL('SMPE Client Certificate') +
   RING(keyringname) USAGE(CERTAUTH))

where SMPE Client Certificate is the label you choose in the previous step to identify this certificate, keyringname is the name of the key ring you choose in Creating key rings, and ring-owner is the user ID that created the key ring.