This inbound channel definition has the MCA User ID attribute set to blank, and has no other channel security configured. Remote systems can use this channel definition to connect to the queue manager, with access authority determined by a user ID supplied by the remote user.
To prevent unauthorized access perform one of the following:
This inbound channel definition has the MCA User ID attribute set to "mqm", and has no other channel security configured. Remote systems can use this channel definition to connect to the queue manager with "mqm" user authorities; the "mqm" User ID generally has a very strong set of authorities.
To prevent unauthorized access perform one of the following:
If an inbound connection request is received but an appropriate channel definition cannot be found on that queue manager, and channel auto-definition is enabled with no channel auto-definition exit, IBM MQ creates a definition automatically and uses it.
Automatic definitions are based on two default definitions supplied with IBM MQ: SYSTEM.AUTO.RECEIVER and SYSTEM.AUTO.SVRCONN.
If these channel definitions have the MCA User ID attribute set to blank, and no other channel security is configured, remote systems are able to use channel auto-definition to connect to the queue manager with access authorities that are determined by a user ID supplied by the remote user.
If the SYSTEM.AUTO.RECEIVER and SYSTEM.AUTO.SVRCONN channel definitions have a security exit configured, or if TLS/SSL is configured, this message is not output as the identity for the inbound connection is authenticated using this functionality. Also if the queue manager has a channel auto-definition exit configured, we assume that this is used to add security to the system channel definitions, and do not output the message.
To prevent unauthorized access perform one of the following:
If an inbound connection request is received but an appropriate channel definition cannot be found on that queue manager, and channel auto-definition is enabled with no channel auto-definition exit, IBM MQ creates a definition automatically and uses it.
Automatic definitions are based on two default definitions supplied with IBM MQ: SYSTEM.AUTO.RECEIVER and SYSTEM.AUTO.SVRCONN.
If these channel definitions have the MCA User ID attribute set to "mqm", and no other channel security is configured, remote systems are able to use channel auto-definition to connect to the queue manager with "mqm" user authorities; the "mqm" User ID generally has a very strong set of authorities.
If the SYSTEM.AUTO.RECEIVER and SYSTEM.AUTO.SVRCONN channel definitions have a security exit configured, or TLS/SSL is configured, this message is not output as the identity for the inbound connection is authenticated using this functionality. Also if the queue manager has a channel auto-definition exit configured, we assume that this is used to add security to the system channel definitions, and do not output the message.
To prevent unauthorized access perform one of the following:
This test uses PCF commands that are not available in older queue manager command levels. The selected queue manager's command level indicates that it does not support the command code used by this test. Select a queue manager with an applicable command level and run the test again.
Applicable command levels: