You must configure SAF keyring and RACF® authorization to map a z/OS® user to an administrator role for the Liberty profile on z/OS.
For z/OS users using SAF keyring and RACF authorization, the SSL definition must point to SAF, and the administrator role is defined in RACF.