Authorizing access to data sets
The IBM MQ data sets should be protected so that no unauthorized user can run a queue manager instance, or gain access to any queue manager data. To do this, use normal z/OS® RACF® data set protection.
Table 1 summarizes the RACF access that the queue manager started task procedure must have to the different data sets.
RACF access | Data sets |
---|---|
READ |
|
UPDATE |
|
ALTER |
|
Table 2 summarizes the RACF access that the started task procedure for distributed queuing must have to the different data sets.
RACF access | Data sets |
---|---|
READ |
|
UPDATE |
|
For more information, see the z/OS Security Server RACF Security Administrator's Guide.