The setmqcrl command applies to WebSphere MQ for Windows only.
Use the setmqcrl command to configure and administer support for publishing CRL (certificate revocation list) LDAP definitions in an Active Directory.
A domain administrator must use this command, or setmqscp, initially to prepare the Active Directory for WebSphere MQ usage and to grant WebSphere MQ users and administrators the relevant authorities to access and update the WebSphere MQ Active Directory objects. You can also use the setmqcrl command to display all the currently configured CRL server definitions available on the Active Directory, that is, those definitions referred to by the queue manager's CRL namelist.
The only types of CRL servers supported are LDAP servers.
>>-setmqcrl--+-------------------------+------------------------> '- -a -+----------------+-' '- -m --QMgrName-' >--+-------------------------+--+------+----------------------->< '- -r -+----------------+-' '- -d -' '- -m --QMgrName-'
You must specify one of -a (add), -r (remove) or -d (display).
The following command creates the IBM-MQClientConnections folder and allocates the required permissions to WebSphere MQ administrators for the folder, and to child objects created subsequently. (In this, it is functionally equivalent to setmqscp -a.)
setmqcrl -a
The following command migrates existing CRL server definitions from a local queue manager, Paint.queue.manager, to the Active Directory, deleting any other CRL definitions from the Active Directory first:
setmqcrl -a -m Paint.queue.manager
Notices |
Downloads |
Library |
Support |
Feedback
![]() ![]() |
zsetmqcr |