Usage of Username/Password in TIBCO ActiveMatrix Adapter for WebSphere MQ 6.2.1 .
Article ID: KB0089283
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix Adapter for Websphere MQ | - |
| Not Applicable | - |
Description
Currently, the feature "Support for Username/Password Based Secure Client Connection", which is mentioned in the TIBCO ActiveMatrix Adapter for WebSphere MQ 6.2.1 docmentation, is as follows:
--------------------------
Authorization---Available only when the Using MQ Client Mode checkbox is selected. If selected, for a client connection, the adapter takes the username and password at instance level. In this case, users can develop their own client security exit to pass additional security context. If not selected, for a client connection the adapter relies on the client operating system's username and password for authentication and passes only the username to the server.
--------------------------
This feature is used when there is a corresponding exit program placed on the MQ Server side, which is used to check if the login given in the adapter is valid or not. The security exit is known as a program placed in the MQ channel. A user can write the program to filter out the unauthorized users.--------------------------
To implement this feature, do the following.
On the MQ server side:
1). Write a security exit program named "securityexit".
2). Build it and the file "securityexit.dll" will be created.
3). Copy the file "securityexit.dll" to <MQ HOME>\exits.
4). Name a server connection channel named "conn".
5). Configure "security exit name" as "securityexit(EntryPoint)". "securityexit" is the name of the .dll file. "EntryPoint" is the function name (receive username and password) in the file.
6). Restart the Queue Manager.
On the Adapter side:
1). Set the "QueueManager:" and "Error Queue:" name.
2). Check the "Using MQ Client Mode" option and set the correct value in "Paramenters for Test Connection:" such as <Channel_Name>/<Protocol in Upper case>/<IP_Address>(<Channel's Listener>). For example, CONN/TCP/192.168.69.100(1414).
Test the result. Click the "Test Connection" button in Design time or start the Adapter. The MQ Server will create a "tmp.txt" file in <MQ_HOME>\ . You will find that the username and password were written to the "tmp.txt" file.
Issue/Introduction
Feedback
