ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » General IBM MQ Support » MQ Security and Channel Authority Records

Post new topic  Reply to topic
 MQ Security and Channel Authority Records « View previous topic :: View next topic » 
Author Message
hammer76
PostPosted: Fri Oct 24, 2014 8:01 am    Post subject: Reply with quote

Newbie

Joined: 24 Oct 2014
Posts: 6
Are there any pros or cons in standard MQ security v Channel Authentication Records? We've beent thinking about starting to implement authentication records.
Back to top
View user's profile Send private message
mqjeff
PostPosted: Fri Oct 24, 2014 8:34 am    Post subject: Reply with quote

Grand Master

Joined: 25 Jun 2008
Posts: 17447
It's not an either/or choice.

CHLAUTH records are an additional set of controls that apply specifically to channels. They let you control what happens when someone connects to a queue manager over a channel.

So they sit on top of normal mq security, and add additional features.

Likewise, the user authorization in v8 sits on top of both chlauth and regular MQ security.
Back to top
View user's profile Send private message
Vitor
PostPosted: Fri Oct 24, 2014 8:34 am    Post subject: Reply with quote

Grand High Poobah

Joined: 11 Nov 2005
Posts: 26093
Location: Texas, USA
hammer76 wrote:
Are there any pros or cons in standard MQ security v Channel Authentication Records? We've beent thinking about starting to implement authentication records.


The question makes no sense. Channel Authority records add additional features to MQ Security, allow more granular control of MQ Security and are just good things. They don't replace the "standard" MQ security of queue authorities, MCA Users and all the old familar constructs but work in conjunction with them.

As a simple example, channel authority records allow many more options to set the user id supplied to the OAM than available in v7.0.
_________________
Honesty is the best policy.
Insanity is the best defence.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » General IBM MQ Support » MQ Security and Channel Authority Records
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.