You can control a web user's access to broker resources by associating the web user ID with a role, which has security permissions assigned to it.
Before you start:
Broker administrators can use the mqsiwebuseradmin command to create a new web user, to set or change a web user's password, to remove a web user, or to assign a web user to a role.
If administration security is enabled, web users can access the web UI only when they have logged on using their web user account. Their access to data and broker resources is controlled by the permissions that have been associated with their role (system user ID). If administration security is not enabled, web users can interact with the web UI without logging on; they interact with the web UI as the 'default' user and can access all data and broker resources.
The steps shown in this task are based on the assumption that you want to have broker administration security enabled.
Complete these steps to grant access to web users based on their assigned role: