Use the mqsisetdbparms command to associates a specific user ID and password with one or more resources in your broker domain.
The user ID and password pair is created in the DSN folder under the broker's registry folder.
This command does not run if the broker is running. You must stop the broker before you run this command.
The mqsisetdbparms command does not apply to the broker databases. Therefore, you cannot use this command to override the broker data source name.
For compatibility with existing systems, you can still specify <password>. However, if you do not specify a password with this parameter when you run the command, you are prompted to enter a password during its invocation, and to enter the password a second time to verify that you have entered it correctly.
On Windows systems, the user ID that is used to run this command must have Administrator authority on the local system.
On Linux and UNIX systems, the user ID that is used to run this command must be a member of the mqbrkrs group.
On z/OS, the user ID that is used to run this command must be a member of a group that has READ and WRITE access to the component directory.
Ensure that the registry is appropriately secured to prevent unauthorized access. mqsisetdbparms is not required for correct operation of the broker. However, if the broker administrator does not assign specific user IDs and passwords to specific resources, the broker user ID (and password on Windows and UNIX systems) is used. The password is not stored in clear text in the file system.
Data source names
mqsisetdbparms WBRK_BROKER -n MQBroker1 -u MQUserId -p password
mqsisetdbparms WBRK_BROKER -n MQBroker1 -d
JMS and JNDI resource names
The following examples show the use of the command when the URI for a JMS or JNDI resource name is substituted for the ResourceName that is associated with the -n parameter.
For a JMS resource, the prefix is "jms::"; for JNDI, the prefix is "jndi::".
On Linux and UNIX systems, if the parameter string includes a back slash (\) character, you must escape from this character by using a second back slash character (\\) when you enter the mqsisetdbparms command.
mqsisetdbparms MyBroker1 -n jms::tcf1 -u myuserid -p secret
mqsisetdbparms MyBroker1 -n jndi::com.sun.jndi.fscontext.RefFSContextFactory
-u myuserid -p secret
JMS node account names
The preceding examples describe how to configure security for JMS and JNDI resources for all JMS nodes that use those resources in a broker.
Message Flow Name_Node label
MyJMSFlow1_MyJMSInput1
<resource type><account name>@<resource name>
jms::MyJMSFlow1_MyJMSInput1@tcf1
mqsisetdbparms MyBroker1 -n jms::MyJMSFlow1_MyJMSInput1@tcf1
-u myuserid -p secret