Use this information to understand the access authorization commands.
Authorizations defined by the AUT keyword on the
GRTMQMAUT and
RVKMQMAUT commands can be categorized as follows:
- Authorizations related to MQI calls
- Authorization-related administration commands
- Context authorizations
- General authorizations, that is, for MQI calls, for commands, or both
The following tables list the different authorities, using the AUT parameter for MQI calls, Context calls, MQSC and PCF commands, and generic operations.
Table 1. Authorizations for MQI calls
AUT |
Description |
*ALTUSR |
Allow another user's authority to be used for MQOPEN and MQPUT1 calls. |
*BROWSE |
Retrieve a message from a queue by issuing an MQGET call with the BROWSE option. |
*CONNECT |
Connect the application to the specified queue manager by issuing an MQCONN call. |
*GET |
Retrieve a message from a queue by issuing an MQGET call. |
*INQ |
Make an inquiry on a specific queue by issuing an MQINQ call. |
*PUB |
Open a topic to publish a message using an MQPUT call. |
*PUT |
Put a message on a specific queue by issuing an MQPUT call. |
*RESUME |
Resume a subscription using an MQSUB call. |
*SET |
Set attributes on a queue from the MQI by issuing an MQSET call. If you open a queue for multiple options, you must be authorized for each of them. |
*SUB |
Create, Alter or Resume a subscription to a topic using an MQSUB call. |
Table 2. Authorizations for context calls
AUT |
Description |
*PASSALL |
Pass all context on the specified queue. All the context fields are copied from the original request. |
*PASSID |
Pass identity context on the specified queue. The identity context is the same as that of the request. |
*SETALL |
Set all context on the specified queue. This is used by special system utilities. |
*SETID |
Set identity context on the specified queue. This is used by special system utilities. |
Table 3. Authorizations for MQSC and PCF calls
AUT |
Description |
*ADMCHG |
Change the attributes of the specified object. |
*ADMCLR |
Clear the specified object (PCF Clear object command only). |
*ADMCRT |
Create objects of the specified type. |
*ADMDLT |
Delete the specified object. |
*ADMDSP |
Display the attributes of the specified object. |
Table 4. Authorizations for generic operations
AUT |
Description |
*ALL |
Use all operations applicable to the object. all authority is equivalent to the union of the authorities alladm , allmqi , and system appropriate to the object type. |
*ALLADM |
Perform all administration operations applicable to the object. |
*ALLMQI |
Use all MQI calls applicable to the object. |
*CTRL |
Control startup and shutdown of channels, listeners, and services. |
*CTRLX |
Reset sequence number and resolve indoubt channels. |