| Author |
Message |
 Topic: CCSID conversion problem |
withKappa
Replies: 2
Views: 1722
|
 Forum: General IBM MQ Support Posted: Fri Jan 13, 2012 3:03 am Subject: CCSID conversion problem |
Hi all,
I have a problem with CCSID conversion.
I have 2 QM (QM1 and QM2).
QM1 default CCSID 850
QM2 default CCSID 1208 (UTF - 8 ).
There is a sender channel QM1.TO.QM2 with data conversion ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Tue Jan 03, 2012 12:21 am Subject: security on Server connection channel |
ok thx to all  .
If I have other questions I will post here again.
Mark |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Mon Jan 02, 2012 4:08 am Subject: security on Server connection channel |
The default behaviour for clients is to use the certificate bearing their name, e.g. if the client runs under a user named mytestuser it will expect a certificate with the label of ibmwebspheremqmyt ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Mon Jan 02, 2012 1:12 am Subject: security on Server connection channel |
The only way to identify which key in a given keystore is presented by an application is using the *label* of the certificate, not the distinguished name. This is the label you have generated lik ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Mon Jan 02, 2012 1:06 am Subject: security on Server connection channel |
| t does not, and should not, be the same. The queue manager should have its own key store, and clients should have their own key stores. The CA signer certificates of each of the client and queue manag ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Mon Jan 02, 2012 1:03 am Subject: security on Server connection channel |
Now, how can I specify which (only) clients can use a server connection channel?
Research the SSLPEER attribute. It will allow to only allow specific SSL certs per channel, even if all your certs ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Mon Jan 02, 2012 12:57 am Subject: security on Server connection channel |
Is the keystore a JKS?
yes |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Sun Jan 01, 2012 12:10 pm Subject: security on Server connection channel |
| You'll need client key stores (read very carefully about the Common Name (CN) requirements for a client), and a Client Channel Definition Table (CCDT) file. Depending on your client language, e.g. C, ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Sun Jan 01, 2012 8:47 am Subject: security on Server connection channel |
Hi all,
I read a lot of documentation about ssl.
I created a key repository and I added a self signed personal certificate (we will use CA but now a self signed is accpted).
I configured MQ to us ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Sun Jan 01, 2012 4:32 am Subject: security on Server connection channel |
| Yes, with SSL; SSL restricts who can connect, and an MCAUSER restricts what that connection can do. Exits can also be used to limit even more, e.g. BlockIP2 can restrict which IP Addresses can origina ... |
| Topic: security on Server connection channel |
withKappa
Replies: 23
Views: 13733
|
Forum: IBM MQ Security Posted: Sun Jan 01, 2012 4:10 am Subject: security on Server connection channel |
Hi all,
I have 2 clients (clientA and clientB) that use differents queues.
I defined 2 server connection (SvrA and SvrB) channel with 2 differents mcauser (userA and userB). UserA is authorized ... |
