Implementing z/OS Security for WMB Explorer and WMB Toolkit
Advanced Technical Sales
WebSphere Message Broker; WebSphere MQ
Abstract: Configuring security between a WebSphere Message Broker (WMB) running on z/OS and WMB Explorer and/or WMB Toolkit running on a workstation (either Windows or a Linux) requires additional WMQ and WMB configuration changes or the use of dedicated channels with specific MCA users IDs. Without these additional steps, both the WMB Explorer and the WMB Toolkit will use the local workstation’s identity or the channel’s MCA user ID for authorization checking for WMQ resources and WMB roles (e.g., administrator versus developer) with the security authorization facility(SAF) on z/OS. This may be sufficient if no user authentication is required and if the workstation identity is defined to the z/OS SAF. But more likely; requiring user authentication will be required to satisfy security requirements.