You can authenticate to the IBM HTTP Server on z/OS using HTTP basic authentication or client certificates with the System Authorization Facility (SAF) security product. Use SAF authentication for verification of user IDs and passwords or certificates.
LoadModule auth_saf_module modules/mod_auth_saf.so
SAF authentication is provided by the mod_auth_saf module. The mod_auth_saf module allows the use of HTTP basic authentication or client certificates to restrict access by looking up users, groups, and SSL client certificates in SAF. This module also allows you to switch the thread from the server ID to another ID prior to responding to the request by using the SAFRunAS directive.
See SAF directives to obtain detailed descriptions of the SAF authorization directives for use with IBM HTTP Server.