WebSphere Message Broker, Version 8.0.0.7
Operating Systems: AIX, HP-Itanium, Linux, Solaris, Windows, z/OS
See information about the latest product version
See information about the latest product version
Securing WebSphere MQ resources
Secure the WebSphere® MQ resources that your broker configuration requires.
This information does not apply to z/OS®.
Brokers depend on a number of WebSphere MQ resources to operate successfully. You must control access to these resources to ensure that the brokers can access the resources on which they depend, and that these same resources are protected from other users.
Some authorizations are granted on your behalf when commands are issued. Others depend on the configuration of your broker network.
- When you issue the command mqsicreatebroker, it grants
put and get authority on your behalf to the group mqbrkrs for the following queues:
- SYSTEM.BROKER.ADAPTER.FAILED
- SYSTEM.BROKER.ADAPTER.INPROGRESS
- SYSTEM.BROKER.ADAPTER.NEW
- SYSTEM.BROKER.ADAPTER.PROCESSED
- SYSTEM.BROKER.ADAPTER.UNKNOWN
- SYSTEM.BROKER.ADMIN.QUEUE
- SYSTEM.BROKER.ADMIN.REPLYTODM
- SYSTEM.BROKER.AGGR.CONTROL
- SYSTEM.BROKER.AGGR.REPLY
- SYSTEM.BROKER.AGGR.REQUEST
- SYSTEM.BROKER.AGGR.TIMEOUT
- SYSTEM.BROKER.AGGR.UNKNOWN
- SYSTEM.BROKER.AUTH
- SYSTEM.BROKER.CONTROL.QUEUE
- SYSTEM.BROKER.DEPLOY.QUEUE
- SYSTEM.BROKER.DEPLOY.REPLY
- SYSTEM.BROKER.EDA.COLLECTIONS
- SYSTEM.BROKER.EDA.EVENTS
- SYSTEM.BROKER.EXECUTIONGROUP.QUEUE
- SYSTEM.BROKER.EXECUTIONGROUP.REPLY
- SYSTEM.BROKER.INTER.BROKER.COMMUNICATIONS
- SYSTEM.BROKER.MODEL.QUEUE
- SYSTEM.BROKER.TIMEOUT.QUEUE
- SYSTEM.BROKER.WS.ACK
- SYSTEM.BROKER.WS.INPUT
- SYSTEM.BROKER.WS.REPLY
- When you start the WebSphere Message Broker Toolkit, it connects to a broker by using a WebSphere MQ client/server connection. For details of WebSphere MQ channel security, see "Setting up WebSphere MQ client security" in the Clients section of the WebSphere MQ Version 7 Information Center online.
- When you start the WebSphere Message Broker Explorer, it connects to a broker by using a WebSphere MQ client/server connection. For details of WebSphere MQ channel security, see "Setting up WebSphere MQ client security" in the Clients section of the WebSphere MQ Version 7 Information Center online.
- When you create and deploy a message flow that includes nodes which reference WebSphere MQ queues, grant get, inq, and put authority to the user ID under which the broker is running.