ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » General IBM MQ Support » What occurs when I do a "refresh security(*) type(ssl)&

Post new topic  Reply to topic
 What occurs when I do a "refresh security(*) type(ssl)& « View previous topic :: View next topic » 
Author Message
murdeep
PostPosted: Wed Jan 16, 2008 8:29 am    Post subject: What occurs when I do a "refresh security(*) type(ssl)& Reply with quote

Master

Joined: 03 Nov 2004
Posts: 211
I have a question regarding the command "refresh security(*) type(ssl)". Sometimes when I issue this command it takes an incredibly long time to return control back to me. I was wondering what is occurring as a result of this command. Do all my ssl enabled channels have to stop and restart as a result.

Anyone care to comment? Thanks.
Back to top
View user's profile Send private message
bbburson
PostPosted: Wed Jan 16, 2008 9:17 am    Post subject: Reply with quote

Partisan

Joined: 06 Jan 2004
Posts: 378
Location: Nowhere near a queue manager
I don't know what ALL is happening behind the scenes, but I do know that all connected SSL channels will be terminated. That is probably why you see the delay in getting control back. It's also why REFRESH SECURITY TYPE(SSL) offers no real advantage over a queue manager restart, in my opinion.
Back to top
View user's profile Send private message
jefflowrey
PostPosted: Wed Jan 16, 2008 9:20 am    Post subject: Reply with quote

Grand Poobah

Joined: 16 Oct 2002
Posts: 19981
bbburson wrote:
why REFRESH SECURITY TYPE(SSL) offers no real advantage over a queue manager restart, in my opinion.


It presumably doesn't interrupt NON ssl channels.

It presumably doesn't interrupt applications with BINDINGS connections.
_________________
I am *not* the model of the modern major general.
Back to top
View user's profile Send private message
bbburson
PostPosted: Wed Jan 16, 2008 9:27 am    Post subject: Reply with quote

Partisan

Joined: 06 Jan 2004
Posts: 378
Location: Nowhere near a queue manager
jefflowrey wrote:
bbburson wrote:
why REFRESH SECURITY TYPE(SSL) offers no real advantage over a queue manager restart, in my opinion.


It presumably doesn't interrupt NON ssl channels.

It presumably doesn't interrupt applications with BINDINGS connections.


True enough. My myopic view sees all/most of our clients connecting with SSL and if they're all going to get knocked off and have to reconnect anyway then I might as well restart the queue manager. To me this is quite different from the other use of REFRESH SECURITY which re-reads the system password and group files and does not disrupt any already-connected clients.

Just my bias based on my environment.
Back to top
View user's profile Send private message
murdeep
PostPosted: Wed Jan 16, 2008 9:45 am    Post subject: Reply with quote

Master

Joined: 03 Nov 2004
Posts: 211
By "interrupt" are you implying it is not a graceful stop/start of the ssl channels but rather more like a stop force? In my case the refresh took so long that I thought it was hung so I suspect that the channels are being allowed to quiesce gracefully.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » General IBM MQ Support » What occurs when I do a "refresh security(*) type(ssl)&
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.