The INSERT or CHANGE of a CERTMAP record can be used with the DSNAME(DSN) parameter to point to a certificate in a z/OS file to pick up portions of the distinguished name from certificates SUBJDN. Is there an example?
Release : 16.0
Component : CA ACF2 for z/OS
The following certificate that is stored in the ACF2 INFOSTG database can be EXPORTed into a z/OS file:
Next INSERT the CERTMAP record using DSName to point to the CERTB64 certificate EXPORTed, in the SDNFILTR just specify the starting point of the filter(CN=mvssys8.tst.blue.com) to pickup the remainder of the filter(OU=CA.C=US).