IBM Integration Bus, Version 10.0.0.9 Operating Systems: AIX, HP-Itanium, Linux, Solaris, Windows, z/OS


mqsireloadsecurity command - Windows, Linux, and UNIX systems

Use the mqsireloadsecurity command on Windows, Linux, and UNIX to force the immediate expiry of some or all of the entries in the security cache.

Syntax

Read syntax diagramSkip visual syntax diagram
>>-mqsireloadsecurity--| integrationNodeSpec |------------------>

>--+------------------+--+-------------------+-----------------><
   '- -u --useridList-'  '- -w --timeoutSecs-'   

integrationNodeSpec

|--+- integrationNodeName ---------+----------------------------|
   +- -n --integrationNodeFileName-+   
   +- -i --ipAddress-- -p --port---+   
   '-+- -i --ipAddress-+-----------'   
     '- -p --port------'               

Parameters

integrationNodeSpec
(Required) You must specify at least one parameter to identify the target integration node for this command, in one of the following forms:
integrationNodeName
This parameter identifies the name of a specified integration node. To connect to a remote integration node, you must also specify -i and -p.
-n integrationNodeFileName
This parameter identifies the name of a .broker file that contains the connection details for a local or remote integration node. Include the location (path) and file name when you specify this parameter. You must ensure that the location is accessible when you run this command.

Use this option if multiple users want to connect to the same integration node, or if you are using advanced connection parameters such as SSL. To learn more about creating and using a .broker file, see Connecting to an integration node by creating a .broker file.

If you want to run a command that uses SSL to administer a remote integration node over a secured channel, you must specify the keystore and truststore password for the connection that is using the IBM_JAVA_OPTIONS environment variable. For more information, see Resolving problems when running commands.

-i ipAddress, -p port
These parameters identify the connection details for the integration node.

Use this option for connections to remote integration nodes that do not require advanced connection parameters.

If you are connecting to a remote integration node, you can additionally prefix integrationNodeName to explicitly set which integration node to connect to. You cannot use -n integrationNodeFileName in the same command.

Parameters that you omit assume default values:

  • -i ipAddress: The host name or IP address of the computer on which the integration node is running. If you do not specify this parameter, a value that represents the local computer is used.

    If you want to connect to a secured integration server as a specific user, provide the security credentials as a URI in the following format: tcp://user:password@hostname. If your password contains URI Reserved characters, you must convert these characters to the percent-encoded format. For more information, see A correct URL and password returns error BIP1939 when you attempt to connect to a remote host name in Resolving problems when running commands.

  • -p port: The port on which the web user interface HTTP connection listener is listening. If you do not specify this parameter, the value 4414 is used.
-u useridList
(Optional) This parameter reloads all entries in the security cache for the specified list of users (separated by colons). If you do not specify this parameter, all entries in the security cache are reloaded. For cached certificates, this value is the common name element value.
-w timeoutSecs
(Optional) This parameter specifies the time in seconds that the utility waits to ensure that the command completed; the default value is 60.

Examples

Reload the cache for all users on the specified integration node. :
mqsireloadsecurity INODE1
Reload the cache for a single user on the specified integration node. The connection parameters for the integration node are defined in the file INODE1.broker.
mqsireloadsecurity -n INODE1.integration node -u user1 
Reload the cache for a list of users, and wait for 600 seconds before returning. In this example, the wait time is 600 seconds because the integration node has a configuration timeout wait time value of 400 seconds, to ensure that the integration node does not finish processing before the -w parameter value. For more information, see Setting configuration timeout values.
mqsireloadsecurity INODE1 -u user1:user2:user3 -w 600 

an28610_.htm | Last updated 2017-07-17 12:45:43