| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| Rogue Authentication record |
« View previous topic :: View next topic » |
| Author |
Message
|
| pintrader |
 Posted: Sun Jul 06, 2014 9:10 pm Post subject: Rogue Authentication record |
 |
|
Disciple
Joined: 22 Jan 2014
Posts: 164
|
hi,
I created an authentication record using set authrec.
Here's a dump of what the command look like
SET AUTHREC +
PROFILE('SYSTEM.BASE.TOPIC') +
GROUP('Domain Users@MyDomain') +
OBJTYPE(TOPIC) +
AUTHADD(NONE)
when I try to delete this authrec,
DELETE AUTHREC PROFILE('SYSTEM.BASE.TOPIC') GROUP('Domain Users@MyDomain') OBJTYPE(TOPIC)
AMQ8871: Entity, principal or group not known.
How can i delete this rogue record, even though it has been successfully "created" ?
thanks |
|
| Back to top |
|
 |
| bruce2359 |
| Posted: Sun Jul 06, 2014 9:30 pm Post subject: |
|
|
Poobah
Joined: 05 Jan 2008
Posts: 9399
Location: US: west coast, almost. Otherwise, enroute.
|
Display the authrec. Post the results here.
_________________
I like deadlines. I like to wave as they pass by.
ב''ה
Lex Orandi, Lex Credendi, Lex Vivendi. As we Worship, So we Believe, So we Live. |
|
| Back to top |
|
|
| pintrader |
| Posted: Sun Jul 06, 2014 9:51 pm Post subject: |
|
|
Disciple
Joined: 22 Jan 2014
Posts: 164
|
| bruce2359 wrote: |
| Display the authrec. Post the results here. |
hi, i use dmpmqcfg to dump out the config. this is what i have already posted. I just want to delete this particular record.
SET AUTHREC +
PROFILE('SYSTEM.BASE.TOPIC') +
GROUP('Domain Users@MyDomain') +
OBJTYPE(TOPIC) +
AUTHADD(NONE)
I also have difficulty removing it from MQexplorer. It says
'Unknown group Domain Users@MyDomain' AMQ4808
Why can't it just delete what unknown group there is? If its an unknown group, why allow me to create it in the first place?
thanks |
|
| Back to top |
|
|
| fjb_saper |
| Posted: Sun Jul 06, 2014 10:37 pm Post subject: |
|
|
Grand High Poobah
Joined: 18 Nov 2003
Posts: 20696
Location: LI,NY
|
Because if the group was deleted in AD and then rebuilt, the group name might be the same but the SSID will not be. MQ records the SSID.
I believe the capability to deleted unknown SSID's comes with MQ 8...
If amqoamd -s -m qgmr displays those you should see the actual SSID as it does not match any group.
Before V8, if you want to get rid of those records it's a matter of delete and recreate the qmgr...
Have fun 
_________________
MQ & Broker admin |
|
| Back to top |
|
|
| pintrader |
| Posted: Mon Jul 07, 2014 1:59 am Post subject: |
|
|
Disciple
Joined: 22 Jan 2014
Posts: 164
|
| fjb_saper wrote: |
Because if the group was deleted in AD and then rebuilt, the group name might be the same but the SSID will not be. MQ records the SSID.
I believe the capability to deleted unknown SSID's comes with MQ 8...
|
hi thanks. Domain Users has always been there since the Active Directory was set up and is not being deleted and rebuilt.
| fjb_saper wrote: |
Before V8, if you want to get rid of those records it's a matter of delete and recreate the qmgr...
Have fun :innocent: |
thanks. I think I will raise PMR and see what they say. I cannot just freely delete and recreate the Qmgr because its already running in production. cheers |
|
| Back to top |
|
|
| pintrader |
| Posted: Thu Jul 24, 2014 11:59 pm Post subject: |
|
|
Disciple
Joined: 22 Jan 2014
Posts: 164
|
| Supposedly, as adviced by the authorities, is to try not to create groups with spaces. They have provided me a fix. |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
