March 29, 2021 By James McGuire 2 min read

Ensuring security in any cloud-based software service is always of maximum importance. 

IBM MQ on Cloud is continually working on maintaining a reliable and secure environment. As part of our continual rollout of queue manager upgrades, we are always looking for ways to improve the experience for our users, ensuring security of queue managers and that data is never compromised.

TLS enabled by default on all new MQ on Cloud queue managers

TLS security will now be enabled by default on both of the predefined application channels on all MQ on Cloud queue managers running version 9.2.2 revision 1 or above. The predefined channels ‘CLOUD.ADMIN.SVRCONN’ and ‘CLOUD.APP.SVRCONN’ are now configured to use SSL cipher specification ‘ANY_TLS12_OR_HIGHER’. All applications connecting to a queue manager using a TLS-enabled channel must trust the Let’s Encrypt CA certificate from the queue manager in order to successfully connect. 

How to connect admin applications to a TLS-enabled queue manager

To connect using an administration client, such as MQ Explorer or runmqsc, you will need some additional configuration to connect via the predefined channels.

Here are links to relevant topics that will walk you through how to connect administrative applications to your cloud queue manager using TLS:

How to connect client applications to a TLS-enabled queue manager

Connecting an application securely to an MQ on Cloud queue manager requires additional configuration. In the MQ on Cloud documentation, we have provided guides on how to connect an MQ sample application and examples for how to configure a JMS application using TLS.

Configuring new channels to use TLS

When configuring additional application channels, it is highly recommended to use TLS channels in order to protect credentials and data between applications and queue managers. It is, therefore, strongly advised that if you create user-defined channels in your MQ on Cloud queue manager, to consider enabling TLS on them and following our detailed guides on how to configure your applications to form a secure connection.

Details on how to configure TLS on userdefined channels.

More from Announcements

IBM named a Leader in Gartner Magic Quadrant for SIEM, for the 14th consecutive time

3 min read - Security operations is getting more complex and inefficient with too many tools, too much data and simply too much to do. According to a study done by IBM, SOC team members are only able to handle half of the alerts that they should be reviewing in a typical workday. This potentially leads to missing the important alerts that are critical to an organization's security. Thus, choosing the right SIEM solution can be transformative for security teams, helping them manage alerts…

IBM and MuleSoft expand global relationship to accelerate modernization on IBM Power 

2 min read - As companies undergo digital transformation, they rely on APIs as the backbone for providing new services and customer experiences. While APIs can simplify application development and deliver integrated solutions, IT shops must have a robust solution to effectively manage and govern them to ensure that response times and costs are kept low for all applications. Many customers use Salesforce’s MuleSoft, named a leader by Gartner® in full lifecycle API management for seven consecutive times, to manage and secure APIs across…

IBM Consulting augments expertise with AWS Competencies: A win-win for clients 

3 min read - In today's dynamic economic landscape, businesses demand continuous innovation and speed of execution. At IBM Consulting®, our unwavering focus on partnerships and shared commitment to delivering enterprise-level solutions to mutual clients have been core to our success.   We are thrilled to announce that IBM® has recently gained five competencies from Amazon Web Services (AWS) in vital domains including Cloud Operations, Internet of Things (IoT), Life Sciences, Mainframe Modernization, and Telecommunications. With these credentials, IBM further establishes its position as a…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters