Granting full administrative access to all resources on a queue manager
Grant full administrative access to all the resources on a queue manager, to each user or group of users with a business need for it.
About this task
On UNIX, Linux®, Windows systems, and IBM® i, you can also use the SET AUTHREC command.
Note: On IBM MQ Appliance you can use only the SET AUTHREC command.
Notes:
- If you are using runmqsc to administer the queue manager instead of the MQ Explorer, you must grant authority to inquire, get, and browse the SYSTEM.MQSC.REPLY.QUEUE, and you do not need to grant any authorities on the SYSTEM.MQEXPLORER.REPLY.MODEL queue.
- When giving a user access
to all resources on a queue manager there are some commands that the user cannot run, unless that
user has read access to the qm.ini file. This is due to restrictions on non
mqm
users being able to read the qm.ini file.The user cannot issue the following commands unless you have granted that user read access to the qm.ini file:- Defining a channel that is configured to use TLS
- Defining a channel using auto-configuration insertion variables defined in qm.ini