ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » Archives - All » MQ CLient and authentication from Win2000 to Solaris

This forum is locked: you cannot post, reply to, or edit topics.  This topic is locked: you cannot edit posts or make replies.
 MQ CLient and authentication from Win2000 to Solaris « View previous topic :: View next topic » 
Author Message
wesle15
PostPosted: Mon Dec 15, 2003 8:55 am    Post subject: MQ CLient and authentication from Win2000 to Solaris Reply with quote

Newbie

Joined: 24 Nov 2003
Posts: 2
When I attempt to setup a unix user account/group to set security to with setmqaut for use with a Win2000 VB client API, I can not seem to get the information passed in the UserIdentifier by the VB app through my Svrconn channel to match up with the Unix account/group.
Does this make sense to anyone ? How do I authenticate the user of the client connection when it crosses platforms like this ?
I currently just hard code the mqm user in the mcauser attribute of the channel but this leaves everything wide open.
Back to top
View user's profile Send private message Send e-mail
RogerLacroix
PostPosted: Mon Dec 15, 2003 10:49 pm    Post subject: Reply with quote

Jedi Knight

Joined: 15 May 2001
Posts: 3264
Location: London, ON Canada
Hi,

You would probably get a bigger / better response if you posted this question in the MQSeries Support forum rather than in the Capitalware Product Support forum.

I haven't done any channel exit stuff in a while but here goes. First, you must create 2 channel exits:
(1) One for the client-side
(2) The other for the server-side.

The logic / information passed between the 2 exits is up to you since you will be writing both. What I have done is on the client-side set the pMQCD->UserIdentifier to the UserID and pMQCD->Password to the user inputted password.

On the server-side I verify the incoming UserID and password, either directly with the OS or with an external kept list (note: external list is not good for security).

Then if there is a match allow the channel to start, otherwise stop the channel (return an error) from starting.

Hope that helps.

Regards,
Roger Lacroix
Capitalware Inc.
_________________
Capitalware: Transforming tomorrow into today.
Connected to MQ!
Twitter
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
This forum is locked: you cannot post, reply to, or edit topics.  This topic is locked: you cannot edit posts or make replies. Page 1 of 1

MQSeries.net Forum Index » Archives - All » MQ CLient and authentication from Win2000 to Solaris
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.