Environmental Considerations
In order that WebSphere MQ operates in accordance with its Common Criteria certificate,
the environmental requirements defined in this section need to be met.
- There must be one or more competent individuals that are assigned to manage WebSphere MQ and
the security of the information that it contains. Such personnel are assumed
not to be careless, wilfully negligent or hostile.
- The operating system must be configured in accordance with the manufacturer's
installation guides and where applicable, in its evaluated configuration.
It must be securely configured such that the operating system protects WebSphere MQ from
any unauthorized users or processes.
The following operating systems are supported within the evaluation:
- AIX 5L
- HP-UX 11i
- SUSE Linux Enterprise Server 8 (Linux (x86 platform) and Linux (zSeries platform))
- RedHat Enterprise Linux AS 2.1 (Linux (x86 platform))
- Solaris Version 8
- Solaris Version 9
- Windows 2000 (including all combinations of Advanced Server, Server, Professional,
Service Packs and hotfixes)
- Windows 2003 (including all combinations of Standard, Enterprise, Service
Packs, and hotfixes)
WebSphere MQ relies on the operating system to provide user/group IDs and time
and date information. In addition, you need an application to read the event
logs so that the audit records produced by WebSphere MQ can be read.
The evaluation of WebSphere MQ does not include the following aspects:
- The operating system
- Remote administration
- WebSphere MQ Explorer
- Windows Default Configuration application
- Remote queue management. This excludes WebSphere MQ clients, channels, and Message
Channel Agents from the evaluation
- Third-party or user-written authorization services not supplied with the WebSphere MQ product.