These examples are based on a Linux system. Switch to the mqm user.
su - mqm
The setmqaut comamnd can be used to grant or remove permissions.
The dspmqaut command is used to display a users current permissions. The dspmq command can be used to display the managers. This assumes that the "mqm" users .bash_profile has been updated to have PATH=$PATH:<root installation directory>/bin.
dspmqaut -m MANAGER01 -t qmgr -p JohnDoe
Entity JohnDoe has the following authorizations for object MANAGER01:
connect
inq
The -n option is used to display the authorizations that JohnDoe has on a queue.
dspmqaut -m MANAGER01 -n QUEUE01 -t queue -p JohnDoe
Entity JohnDoe has the following authorizations for object QUEUE01:
get
browse
put
inq
Or on a topic.
dspmqaut -m MANAGER01 -n TOPIC01 -t topic -p JohnDoe
Entity JohnDoe has the following authorizations for object TOPIC01:
pub
sub
If a user is unable to GET or PUT messages on a queue, check the queue's error.log for the following exception.
AMQ8077W: Entity 'JohnDoe' has insufficient authority to access object 'QUEUE01'