mqsichangeusernameserver command

Supported platforms

Purpose

On Windows platforms, Linux, and UNIX systems, use the mqsichangeusernameserver command to change various properties of the User Name Server.

On z/OS, use the mqsichangeusernameserver command to change the refresh interval and authentication properties of the User Name Server

You must stop the User Name Server, using mqsistop on Windows platforms and UNIX platforms, or stopcomponent on z/OS, (see mqsistop command) before you can issue this command.

When you restart the User Name Server, using mqsistart on Windows platforms and UNIX platforms, or startcomponent on z/OS, (see mqsistart command) it uses the changed parameters.

Syntax

Windows platforms, Linux and UNIX systems

z/OS console command

Synonym: cu

Parameters

-a ServicePassword
(Optional - Windows platforms,Linux, and UNIX systems) The password for the ServiceUserID.

For compatibility with existing systems, you can still specify <password>. However, if you do not specify a password with this parameter when you run the command you are prompted to enter a password during its invocation, and to enter the password a second time to verify that you have entered it correctly.

On Linux and UNIX systems, -a is required for Windows platforms compatibility but it is not used in relation to ServiceUserID.

-i ServiceUserID
(Optional - Windows platforms, Linux, and UNIXsystems) The user ID under which the broker runs. You can only change this value if you also change the password.
This can be specified in any valid username syntax. On Windows platforms, these are:
  • domain\username
  • \\server\username
  • .\username
  • username

On Linux and UNIX systems, only the last format, username, is valid.

If you use the unqualified form for this user ID (username) in Windows, the operating system searches for the user ID throughout its domain, starting with the local system. This search might take some time to complete.

The ServiceUserID specified must be a member of the local group mqbrkrs. On Windows platforms, it can be an indirect or direct member of the group. The ServiceUserID must also be authorized to access the home directory (where WebSphere Event Broker has been installed), and the working directory (if specified by the mqsicreateusernameserver -w flag). This ID must also be a member (either direct or indirect) of the local group mqm.

The security requirements for the ServiceUserID are detailed in Security requirements for Windows platforms for Windows platforms and in Security requirements for Linux and UNIX platforms for UNIX platforms.

-d SecurityDomainName
(Optional - Windows platforms, Linux, and UNIX systems) The name of the security domain on the Windows platform.
-r RefreshInterval
(Optional - Windows platforms, Linux, and UNIX systems) (Required - z/OS) The interval, in seconds, at which the User Name Server interrogates the security subsystem for changes to user or group attributes.
-g AuthProtocolDataSource
(Optional) Use this parameter to specify the name of the data source required by the authentication protocol.
-j
(Optional) Indicates that groups and group memberships are defined in the data source for the authentication protocol, rather than being drawn from the operating system.
-o
(Optional) Indicates that groups and group memberships are drawn from the operating system, rather than being defined in the data source for the authentication protocol.

Responses

This command returns the following responses:

  • BIP8012 Unable to connect to system components
  • BIP8013 Component does not exist
  • BIP8018 Component running
  • BIP8021 User ID/password incorrect
  • BIP8022 Invalid user ID/password
  • BIP8023 Password required
  • BIP8030 Unable to modify user ID privileges
  • BIP8068 Integer argument required

Examples

Windows platforms, Linux, and UNIX platforms:
mqsichangeusernameserver -r 2000
z/OS:
F MQP1UNS,cu r=2000
Related concepts
User Name Server