| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Authentication |
« View previous topic :: View next topic » |
| Author |
Message
|
| rieta |
 Posted: Sun Jul 28, 2002 7:35 pm Post subject: Authentication |
 |
|
Novice
Joined: 22 Dec 2001
Posts: 20
Location: Mybubble
|
The documentation of MQSeries says that in Windows NT the user ID that is passed to the server is the currently logged-on user ID on the client. While this is not true. The user ID is that is passed is the user ID given in the CreateTopicConnection/ CreateQueueConnection call irrespective of the currently logged on user. Also if the userId belongs to the administartors/ mqm group on the server machine, the call succeeds irrespective of the password. Is this by design? Is this the kind of security that MQSeries provides?
Please help. I am completely lost.
Regards
Rieta |
|
| Back to top |
|
 |
| kolban |
| Posted: Sun Jul 28, 2002 7:49 pm Post subject: |
|
|
Grand Master
Joined: 22 May 2001
Posts: 1072
Location: Fort Worth, TX, USA
|
With Java based MQ clients, it is impossible to query the environment to determine who the operating system thinks you are logged on as (someone tell me if this is wrong and how a Java application may determine who you are logged on as ...?)
In either respect, it doesn't really matter. When an MQ Client connects to the queue manager, the client sends "protocol" information in the flow. This can include who the client "claims" to be. Unfortunately, any Java client can claim to be any user and no implicit authentication is performed. If you need true authentication, then you need to use the security exits.
THis story is only true for client connections. Server bound applications pass the userid that the process is executing as. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
