| Author |
Message |
 Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
 Forum: General IBM MQ Support Posted: Sun Aug 19, 2007 5:55 pm Subject: self-signed certificate + one-way authentication |
| Thanks a lot. Actually I have also adopt SupportPac IP Block which use to allow access to some IP, but this is for static IP. However, because my company people's IP is dynamic, it may changed sometim ... |
| Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
Forum: General IBM MQ Support Posted: Thu Aug 16, 2007 5:47 pm Subject: self-signed certificate + one-way authentication |
Thanks all. The two risk are out of my boss consideration as he does not need to consider such high security.
To RogerLacroix, thanks for your advice, but we do not want to consider any pricing pro ... |
| Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
Forum: General IBM MQ Support Posted: Thu Aug 16, 2007 2:06 am Subject: self-signed certificate + one-way authentication |
Not a Java person personally, but that does seem like a bit of an oversight. All you need to do to gain admin rights is one line of code; one wonders how the MQ admins in all the Java sites round ... |
| Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
Forum: General IBM MQ Support Posted: Thu Aug 16, 2007 12:48 am Subject: self-signed certificate + one-way authentication |
authorize seems to be of no use for Java applications.
For java applications, IBM is up to the developer to set the correct MQMD.UserID value. i.e. by setting the Java code as: MQEnvironment.userI ... |
| Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
Forum: General IBM MQ Support Posted: Thu Aug 16, 2007 12:18 am Subject: self-signed certificate + one-way authentication |
Sorry for any unclearance.
My situation is like this. In my company, there is currently no any security on access to MQ. With firewall, external users can not access our internal domain network. So ... |
| Topic: self-signed certificate + one-way authentication |
magkids
Replies: 16
Views: 9739
|
Forum: General IBM MQ Support Posted: Wed Aug 15, 2007 8:41 pm Subject: self-signed certificate + one-way authentication |
| I wonder using self-signed certificate and one-way authentication can solve my situation instead of using mutual authentication. I do not need to authenticate the identity of each unique users. As lon ... |
| Topic: Keeping MCAUser blank |
magkids
Replies: 4
Views: 5501
|
Forum: General IBM MQ Support Posted: Thu Aug 09, 2007 5:51 pm Subject: Keeping MCAUser blank |
| I know the incoming user can then access as mqm user. But aren't the channel should be an application channel? So he could only do something like put, get message. Any admin rights like create/delete ... |
| Topic: Keeping MCAUser blank |
magkids
Replies: 4
Views: 5501
|
Forum: General IBM MQ Support Posted: Thu Aug 09, 2007 2:37 am Subject: Keeping MCAUser blank |
I want to ask what are the consequences of leaving MCAUser blank? Provides that I have use SSL or Channel Exit, only authenticate user can access the queue manager.
If I leave MCAUser blank, that ... |
