User IDs used by the channel initiator

This collection of topics describes the user IDs used and checked for receiving channels and for client MQI requests issued over server-connection channels. Information is provided for TCP/IP and for LU6.2

We can use the PUTAUT parameter of the receiving channel definition to determine the type of security checking used. To get consistent security checking throughout the IBM MQ network, we can use the ONLYMCA and ALTMCA options.

We can use the DISPLAY CHSTATUS command to determine the user identifier used by the MCA.

• Receive channels using TCP/IP
  The user IDs checked depend on the PUTAUT option of the channel and on whether one or two checks are to be performed.
• Receive channels using LU 6.2
  The user IDs checked depend on the PUTAUT option of the channel and on whether one or two checks are to be performed.
• Client MQI requests
  Various user IDs can be used, depending on which user IDs and environment variables have been set. These user IDs are checked against various profiles, depending on the PUTAUT option used and whether an alternate user ID is specified.
• Channel initiator example
  An example of how user IDs are checked against RACF profiles.

Parent topic: User IDs for resource security (MQOPEN, MQSUB, and MQPUT1)