The client would like to determine if any Report IDs or Distribution IDs contain any special characters. If there are any, what would be the setting in the RMOPARMS?
If there will be RACF rules used for external security with CA Deliver, what should be the setting of RMOPARM EXTSEC?
If each CA Deliver RMOSTC task defines a unique RMOPARM SYSID, would this have any effect on the setting of RMOPARM EXTSEC?
 

CA Deliver - All releases

As a character-by-character evaluation of Report IDs and Distribution IDs would be difficult, the suggestion for discovery of any special characters would be to run the following:

//XXXXXXXX JOB ...
//RMORPT EXEC PGM=RMORPT,PARM='dlvr_hlq' <=== Modify db name
//STEPLIB DD DISP=SHR,DSN=DLVR.CVDELOAD <=== Modify, if used
//SYSPRINT DD SYSOUT=*
//SYSIN DD *
REPORT 2
REPORT 3
/*
//

Report 2 will generate a report based on Report IDs.
Report 3 will generate a report based on Distribution IDs.

If there are any special characters identified in a review of the above reports, that would necessitate having setting of RMOPARM EXTTRAN=YES.
If there are no special characters identified, that would then be the default setting of EXTTRAN=NO. 

If the same RACF rules will be used across regions, for external security, then there can be the setting of RMOPARM EXTSEC=YES.
If there are to be different RACF rules used in different regions, then there would be the setting of RMOPARM EXTSEC=UNIQUE.