×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
BMC TrueSight Middleware Administrator 8.2 ... Using Administering WebSphere MQ objects Managing connections

Managing channel authentication records

Channel authentication records provide more precise control over the access granted to specific channels, or sets of channels.

Channel authentication records can be created to perform the following:

  • To block connections from specific IP addresses.
  • To block connections from specific user IDs.
  • To set an MCAUSER value to be used for any channel connecting from a specific IP address.
  • To set an MCAUSER value to be used for any channel asserting a specific user ID.
  • To set an MCAUSER value to be used for any channel having a specific SSL or TLS Distinguished Name (DN).
  • To set an MCAUSER value to be used for any channel connecting from a specific queue manager.
  • To block connections claiming to be from a certain queue manager unless the connection is from a specific IP address.
  • To block connections presenting a certain SSL or TLS certificate unless the connection is from a specific IP address.

In the Navigation panel, select Channel Authentication Records to display the Channel Authentication Records Summary view for all CHLAUTH objects for the current connection:

 

Summary view operations available from the Operations drop-down menu are: Delete, Audit.

In addition to the standard operations available, a Test Channel Authentication option(located in the drop-down list alongside the refresh option) enables you to test channels to verify whether connection records are preventing access to channels.

Note

The Test Channel Authentication option is also available in the Channels summary view.

To run the Test Channel Authentication:

  1. Select the Test Channel Authentication option from the drop-down. The Channel Authentication Records Match screen is displayed.
  2. Select a channel from the drop-down list, and then specify connection details as required. 
  3. Click Match to check if the connection details you entered match against the channel selected. Any channel profiles that match the connection details are displayed. 
    Note that if Yes is displayed in the Warn column, a warning is displayed and the connection is NOT blocked. If No is displayed in this column, the connection is blocked.
Was this page helpful? Yes No Submitting... Thank you
Last modified by Ashley Pearson on Jul 08, 2016
user_guide channel_authentication

Comments

Log in or register to comment.

Managing authority records
Managing cluster status
© Copyright 2015-2017 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.