ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » General IBM MQ Support » triggered progam user ID ??

Post new topic  Reply to topic
 triggered progam user ID ?? « View previous topic :: View next topic » 
Author Message
ehankins
PostPosted: Thu Jul 03, 2003 7:09 am    Post subject: triggered progam user ID ?? Reply with quote

Newbie

Joined: 27 Nov 2002
Posts: 3
Location: St.Louis Mo
I am trying to satisfy some security requirements for a new MQ
project. The intent of the project is to provide an MQ based small files
transfer solution to replace dozens of FTP jobs. We have 2 "C" programs
a sender and reciever which take care of the file to message - messages
to file issues on sender an reciever side. My security related issues is this:

The reciever C program is trigerred and is passed in parms and environment data thru the process definitions. I would like for this triggered program to run under different ID's for differerent types of files.
(i.e - Public files use Public ID, Secure file use Secure ID) , with different security built over the distributed platforms for the various ID's. What I have not been able to do is "assign" a user ID to the triggered program.
It seems to run under the MQ platform ID's . QMQM , mqm, MUSR_ADMIN,

Would anyone have a suggestion on how to accomplish this goal of running the triggered progam under a specific ID ?
any suggestions , even indirectly related would be much appreciated...
Back to top
View user's profile Send private message
bduncan
PostPosted: Thu Jul 03, 2003 5:05 pm    Post subject: Reply with quote

Padawan

Joined: 11 Apr 2001
Posts: 1554
Location: Silicon Valley
Well, to begin with, you'll need the various types of messages to go to different queues. This is because the trigger monitor doesn't inspect the messages, and therefore won't be able to do anything different depending on the type of message (unless of course you write your own trigger monitor, which in the end may be the best course of action for you). Now, assuming all the different types are going to their own individual queues, you'll want to have separate process definitions for each one. Again assuming that you are on a UNIX system, you can create multiple symlinks to the application you want to trigger, chown'ing them to the user/group you want the application to run as, and then setting the appropriate sticky bits. Each process definition will specify one of the symlinks in the APPLICID field, and the same application should get triggered as whatever user/group you assigned in the symlink.
_________________
Brandon Duncan
IBM Certified MQSeries Specialist
MQSeries.net forum moderator
Back to top
View user's profile Send private message Visit poster's website AIM Address
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » General IBM MQ Support » triggered progam user ID ??
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.