Use the mqsicreateaclentry command to create or modify the Configuration Manager data relating to the group or user access control lists that you have defined.
If you create or modify an access control group you must stop and restart the Configuration Manager for the change to take effect.
On z/OS, you must define an
OMVS segment for user IDs and groups, in order for a Configuration
Manager to
obtain user ID and group information from the External Security Manager (ESM)
database.
Note that this command does not check for the existence of the specified component in case you want to set up the access control list first.
If you select -u you must select either -m or -a
On Linux and UNIX systems this must be the first parameter specified. It is case-sensitive on Linux and UNIX systems. On z/OS this parameter is implicit because you specify the component you want to MODIFY.
The default name on Windows, if this parameter is not specified, is 'ConfigMgr'.
<?xml version="1.0" encoding="UTF-8"?> <configmgr host="localhost" listenerPort="1414" queueManager="QNAME" securityExit="test.myExit"/>
<?xml version="1.0"?>and remove the value for the host attribute, to leave the statement as:
<configmgr host="" listenerPort="1414" queueManager="QNAME" securityExit="test.myExit"/>
To add a domain group, grant authority to a local group and then add the domain group, or groups, that you want to authorize into that local group. Any members of those domain groups obtain the permissions of the local group indirectly.
The user ID used to invoke this command must have full control permissions for the object being changed; see ACL permissions for more information.
When z/OS commands
are run through the console, they effectively run as the Configuration
Manager's
started-task ID. This means that the commands inherit a Full Control root
ACL and you can carry out any operation.
If you submit a console
command to the Configuration
Manager you can change any
ACL for that Configuration
Manager.
mqsicreateaclentry CMGR01 -f c:\test\mylist mqsicreateaclentry CMGR01 -g GROUPA -x F -b MYBROKER
/f CMGR01, ca g='GROUPA', x='F', b='MYBROKER'
Notices |
Trademarks |
Downloads |
Library |
Support |
Feedback
![]() ![]() |
an23030_ |