| Author |
Message
|
| exerk |
 Posted: Fri Aug 09, 2013 2:03 am Post subject: |
 |
|
Jedi Council
Joined: 02 Nov 2006
Posts: 6339
|
| pardhunani143 wrote: |
| No errors received.did BlockIP2 supports for MQ V7.1 . |
See my previous post...
_________________
It's puzzling, I don't think I've ever seen anything quite like this before...and it's hard to soar like an eagle when you're surrounded by turkeys. |
|
| Back to top |
|
 |
| Tibor |
| Posted: Fri Aug 09, 2013 2:26 am Post subject: |
|
|
Grand Master
Joined: 20 May 2001
Posts: 1033
Location: Hungary
|
| OK, and what are your settings on the channel (SCYEXIT, SCYDATA)? |
|
| Back to top |
|
|
| pardhunani143 |
| Posted: Fri Aug 09, 2013 8:29 pm Post subject: |
|
|
Novice
Joined: 23 Jul 2013
Posts: 22
|
@Tibor Thanks,the issue was resolved.
I am running some scenarios to test BlockIP2 precedence .I am connecting using Java application through server connection channel on which BlockIP2 is configured and below are the details
Entries in BlockIP2 configuration file :
Patterns=127.0.0.1;
Userids=MUSR_MQADMIN;
Connection parameters in Java code:
String qMngrStr = "Qm1";
String user = "MUSR_MQADMIN";
String password = "";
String queueName = "LQ"
String hostName = "127.0.0.1";
Output:
2013-08-09|23:45:03|Channel closed [TEST.SVRCONN] Connection Name [127.0.0.1]
2013-08-10|00:25:31|Connection refused, Channel [TEST.SVRCONN] ConName [127.0.0.1] User [musr_mqadmin] not in positive list [MUSR_MQADMIN,]
Could someone let me know why i am being blocked if i have added "MUSR_MQADMIN" in positive list ??? |
|
| Back to top |
|
|
| Tibor |
| Posted: Fri Aug 09, 2013 10:32 pm Post subject: |
|
|
Grand Master
Joined: 20 May 2001
Posts: 1033
Location: Hungary
|
Based on your log entry, I guess, this is a case-sensitivity problem. You can try:
- changing your Userids to lower case, or
- using UseridUpperLowerCase keyword in config file |
|
| Back to top |
|
|
| pardhunani143 |
| Posted: Fri Aug 09, 2013 11:06 pm Post subject: |
|
|
Novice
Joined: 23 Jul 2013
Posts: 22
|
@Tabor
Thanks Tabor it worked .Based on the scenarios i ran to find out how BlockIP2 precedence works .I have prepared notes for it and mentioned below .
Order Identity Mechanism(keyword) Notes
0 Userids Positive User Ids list
1 BlockUsers Negative user Ids list
2 Pattern Matching Pattern Matching from incoming network connections
3 CON Connection Name match
4 SSL Filtering based on DN
5 BlockMqmUsers Block privileged users
could you please review with your experience and let me know incase of any changes required |
|
| Back to top |
|
|
| pardhunani143 |
| Posted: Mon Aug 12, 2013 4:57 am Post subject: |
|
|
Novice
Joined: 23 Jul 2013
Posts: 22
|
| can someone please help on this ... |
|
| Back to top |
|
|
| Vitor |
| Posted: Mon Aug 12, 2013 5:08 am Post subject: |
|
|
Grand High Poobah
Joined: 11 Nov 2005
Posts: 26093
Location: Texas, USA
|
| pardhunani143 wrote: |
| can someone please help on this ... |
We're not a support desk with SLAs. Patience is a virtue, especially when you post a question at the weekend.
_________________
Honesty is the best policy.
Insanity is the best defence. |
|
| Back to top |
|
|
| oz1ccg |
| Posted: Thu Aug 15, 2013 2:53 am Post subject: |
|
|
Yatiri
Joined: 10 Feb 2002
Posts: 628
Location: Denmark
|
pardhunani143 wrote:
| Quote: |
| I am doing research in comparing BlockIP2 and CHLAUTH and will submit an article in IBM Developer works soon |
I belive it will be a bit difficult to get an article published on IBM developerWorks if the contents are merly obtained from a service like MQSeries.net. The publishers are typicly also performing some research (or asking their experts to review it) before it's approved and published.
Good luck.
_________________
Regards, Jørgen
Home of BlockIP2, the last free MQ Security exit ver. 3.00
Cert. on WMQ, WBIMB, SWIFT. |
|
| Back to top |
|
|
|
|
