FreeKB - IBM MQ display permissions using the dspmqaut command
IBM MQ - display permissions using the dspmqaut command

These examples are based on a Linux system. Switch to the mqm user.

su - mqm

 

The setmqaut comamnd can be used to grant or remove permissions. 

The dspmqaut command is used to display a users current permissions. The dspmq command can be used to display the managers. This assumes that the "mqm" users .bash_profile has been updated to have PATH=$PATH:<root installation directory>/bin.

dspmqaut -m MANAGER01 -t qmgr -p JohnDoe

Entity JohnDoe has the following authorizations for object MANAGER01: 
    connect
    inq

 

The -n option is used to display the authorizations that JohnDoe has on a queue.

dspmqaut -m MANAGER01 -n QUEUE01 -t queue -p JohnDoe

Entity JohnDoe has the following authorizations for object QUEUE01: 
    get
    browse
    put
    inq

 

Or on a topic.

dspmqaut -m MANAGER01 -n TOPIC01 -t topic -p JohnDoe

Entity JohnDoe has the following authorizations for object TOPIC01: 
    pub
    sub

 

If a user is unable to GET or PUT messages on a queue, check the queue's error.log for the following exception.

AMQ8077W: Entity 'JohnDoe' has insufficient authority to access object 'QUEUE01'

 

Add a Comment




We will never share your name or email with anyone. Enter your email if you would like to be notified when we respond to your comment.




Please enter 0b15c in the box below so that we can be sure you are a human.




Comments

Web design by yours truely - me, myself, and I   |   jeremy.canfield@freekb.net   |