MSCS security

Start by making sure you have identical software installations on each computer in the cluster, as described in WebSphere MQ for Windows, V6.0 Quick Beginnings.

For successful MSCS security, follow these guidelines:

During a failover or move, WebSphere MQ MSCS support ensures that all files that contain queue manager objects have equivalent permissions on the destination node. Explicitly, the code checks that the Administrators and mqm groups, and the SYSTEM account, have full control, and that if Everyone had read access on the old node, that permission is added on the destination node.

You can use a domain account to run your WebSphere MQ Service. Make sure that it exists in the local mqm group on each computer in the cluster.