Security
Overview
In WebSphere MQ, there are three methods of providing security:
- The Object Authority Manager (OAM) facility
- DCE security
- Channel security using SSL
Object Authority Manager (OAM) facility
Authorization for using MQI calls, commands, and access to objects is provided by the Object Authority Manager (OAM), which by default is enabled. Access to WebSphere MQ entities is controlled through WebSphere MQ user groups and the OAM. We provide a command line interface to enable administrators to grant or revoke authorizations as required.
DCE security
Channel exits that use the DCE Generic Security Service (GSS) are provided by WebSphere MQ. For more information, see WebSphere MQ Intercommunication.
Channel security using SSL
The SSL protocol provides industry-standard channel security, with protection against eavesdropping, tampering, and impersonation.
SSL uses public key and symmetric techniques to provide message privacy and integrity and mutual authentication.
For an overview of SSL, including pointers to the commands described in this book, see Protecting channels with SSL.
WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.
IBM is a trademark of the IBM Corporation in the United States, other countries, or both.