Securing Queue Manager for Client Connection: Part 2 – Using SSL with CHLAUTH

Welcome to the 2nd Part of this Securing Queue Manager for Client Connection blog series. In the first part Part 1 – Using SSL we focused on enabling SSL communication between client (MQExplorer) and Queue Manager. But it provided complete administrative access for connections on the server-connection channel created for the purpose. We had disabled CHLAUTH and CONNAUTH security features and at the same time by-passed authorization by setting the MCAUSER of the channel to mqadmin (a privileged user belonging to mqm group).