MQ adapters using SETALL rights by default?

Sascha_Bang · October 8, 2012, 7:58pm

Hello everybody,

I have searched but found nothing, so please forgive me if this has been discussed before.

One of our customers’ MQ administrators is complaining that our application’s MQ adapters (webMethods 8.2) are accessing their queue manager and opening queues using the SETALL right.

He believes this to be a potential security risk and requires us to reduce the requested rights to a minimum. As I, being a developer not savvy with MQ, have no clue what he wants, I am asking this community for help.

Can these rights be configured somewhere? If so, how?

Thank you in advance for your assistance,
Sascha

Sascha_Bang · October 8, 2012, 8:52pm

I have found a KB-article in empower:

[url]https://empower.softwareag.com/sl24sec/SecuredServices/KCFullTextASP/viewing/view.asp?prdfamily=webMethods_ESB&KEY=83444-14245003&DSN=PIVOTAL&DST=TCD[/url]

That means, I only have to set watt.WmMQAdapter.Message.AddDateTimeStamp to false, no?

If it is that easy, I’ll be happy to pass that on.

Any confirmations/objections?