Home

 

PUT authority (PUTAUT)

 

Use this attribute to choose the type of security processing to be carried out by the MCA when executing:

We can choose one of the following:

Process security, also called default authority (DEF)

The default user ID is used.

On platforms with Process security, you choose to have the queue security based on the user ID that the process is running under. The user ID is that of the process or user running the MCA at the receiving end of the message channel.

The queues are opened with this user ID and the open option MQOO_SET_ALL_CONTEXT.

Context security (CTX)

The alternate user ID is used from the context information associated with the message.

The UserIdentifier in the message descriptor is moved into the AlternateUserId field in the object descriptor. The queue is opened with the open options MQOO_SET_ALL_CONTEXT and MQOO_ALTERNATE_USER_AUTHORITY.

The user ID used to check open authority on the queue for MQOO_SET_ALL_CONTEXT and MQOO_ALTERNATE_USER_AUTHORITY is that of the process or user running the MCA at the receiving end of the message channel. The user ID used to check open authority on the queue for MQOO_OUTPUT is the UserIdentifier in the message descriptor.

Only Message Channel Agent security (ONLYMCA)

The default user ID is used.

On platforms with ONLYMCA security, you choose to have the queue security based on the user ID that the process is running under. The user ID is that of the process or user running the MCA at the receiving end of the message channel.

The queues are opened with this user ID and the open option MQOO_SET_ALL_CONTEXT.

This value only applies to z/OS.

Alternate Message Channel Agent security (ALTMCA)

This is the same as for ONLYMCA security but allows you to use context.

This value only applies to z/OS.

This attribute is valid for channel types of:

Context security (CTX) and alternate message channel agent security (ALTMCA) values are not supported on server-connection channels.

Further details about context fields and open options can be found in the WebSphere MQ Application Programming Guide.

More information on security can be found in WebSphere MQ Security, the WebSphere MQ System Administration Guide for WebSphere MQ for iSeries, UNIX systems, and Windows systems, or in the z/OS System Administration Guide

On WebSphere MQ for z/OS it is possible for two userids to be checked. Specific details of userids used by the channel initiator on z/OS can be found in the WebSphere MQ for z/OS System Setup Guide .

 

Parent topic:

Channel attributes in alphabetical order


ic11930_


 

Home