Channel command security

command security requirements, security, protecting channels, secure sockets layer (SSL), MQSC commands" /> Channel command security

Channel command security

We can use SSL to protect channel commands.

Protecting channels with SSL

The Secure Sockets Layer (SSL) protocol provides out of the box channel security, with protection against eavesdropping, tampering, and impersonation. WebSphere MQ support for SSL enables you to specify, on the channel definition, that a particular channel uses SSL security. We can also specify details of the kind of security you want, such as the encryption algorithm you want to use.
SSL support in WebSphere MQ uses the queue manager authentication information object and various CL and MQSC commands and queue manager and channel parameters that define the SSL support required in detail.
The following CL commands support SSL:

WRKMQMAUTI

Work with the attributes of an authentication information object.

CHGMQMAUTI

Modify the attributes of an authentication information object.

CRTMQMAUTI

Create a new authentication information object.

CPYMQMAUTI

Create a new authentication information object by copying an existing one.

DLTMQMAUTI

Delete an authentication information object.

DSPMQMAUTI

Displays the attributes for a specific authentication information object.

For an overview of channel security using SSL, see WebSphere MQ Security.
For details of PCF commands associated with SSL, see WebSphere MQ Programmable Command Formats and Administration Interface.