When bus security is enabled and before users are allowed to connect to a bus, their credentials must first be authenticated. Authentication uses the same user registry as the other parts of WebSphere Application Server.
The user registry is specified as part of the application server security configuration, and can be any of the following types:
Application code in an EJB or web container can invoke the JMS client and access it as a JCA resource. The authentication check is determined by whether the application code has been configured to allow container-managed or application-managed sign-on to resources. For further details, see J2EE Connector security.
When an authentication failure occurs, a JMSSecurityException is thrown. Before trying again, you should check that the user name and password are valid in the user registry for the cell hosting the bus.