Configuring audit logging permissions for MQ Actions

The audit logging permissions apply to actions performed against a IBM MQ object, like a queue manager, queue, or channel. MQ actions occur when configuring MainView Middleware Administrator (MVMA) integration using the mqtool utility, the MVMAoperations from the Monitor Console Object Repository tab, or the Create IBM MQ Connection policy action. Additionally, any Perl automation command is subject to these permissions. 

Note that these permissions do not apply to MVMA. 

Enabling or disabling any of the audit log permissions in the Security tab updates the database for the MVMMApplication Service. 

Related topics

Using-audit-logs-to-manage-and-maintain-the-product

Defining-user-access-and-security-settings

  1. Open the Security tab in the Monitor Console.
  2. In the bottom pane, double-click on the name of a group for which you wish to configure audit log. The Group Settings dialog box is displayed.
  3. Expand the permissions tree under MQ Actions until the Audit node is visible.

    worddav601baff13e0070808fb4cbb8e76f206a.png
  4. Select the audit options as required:
    • Select Audit actions to enable any auditable action taken by a user in this group to be written to the audit log database.
    • Select Abort action on audit error if you wish the task being performed to fail when adding the Audit Record for that task fails, preventing a task being performed and not logged in the audit log.
  5. Click OK to save your changes to the MVMMApplication Service database. Changes take effect the next time a user logs in.

 

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*