If you have enabled administration security, users require specific permissions to be able to run the administration commands.
Command | MQ queue-based security | File-based security | ||
---|---|---|---|---|
WebSphere® MQ Queue6 | MQ permission (set on setmqaut command) | Object flag (set on mqsichangefileauth command)7 | File permission (set on mqsichangefileauth command) | |
mqsichangeresourcestats | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG1 |
+SET | -e integration_server1 | execute+ | |
mqsicreateexecutiongroup | SYSTEM.BROKER.AUTH |
+INQ +PUT | read+,write+ | |
mqsideleteexecutiongroup | SYSTEM.BROKER.AUTH |
+INQ +PUT | read+,write+ | |
mqsideploy | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG |
+PUT | -e integration_server | write+ | |
mqsilist | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.**2 |
+INQ | -e integration_server2 | read+ | |
mqsimode | SYSTEM.BROKER.AUTH |
+INQ (to display) |
read+ (to display) |
|
mqsipushapis | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG |
+INQ | -e integration_server | read+ | |
mqsireloadsecurity | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.**3 |
+PUT | -e integration_server3 | write+ | |
mqsireportresourcestats | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG4 |
+INQ | -e integration_server4 | read+ | |
mqsistartmsgflow5 | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG |
+SET | -e integration_server | execute+ | |
mqsistopmsgflow5 | SYSTEM.BROKER.AUTH |
+INQ | read+ | |
SYSTEM.BROKER.AUTH.EG |
+SET | -e integration_server | execute+ | |
mqsiwebuseradmin | SYSTEM.BROKER.AUTH |
+PUT | write+ |
Only the commands that are listed in this table are subject to administration security.