Managing web user accounts
IBM® App Connect Enterprise administrators can use the mqsiwebuseradmin command to create a new web user, to set, or change a web user's password, to remove a web user or to assign a web user to a role.
Before you begin
About this task
If administration security is enabled, web users can access the web user interface only when they log on using their web user account. As an administrator, you can create multiple roles, with different permissions assigned to them. You can then assign one or more web users to a role. The web users access to data and resources is controlled by the permissions that are set for their role. For more information, see Role-based security.
If administration security is not enabled, web users can interact with the web user interface without logging on. They interact with the web user interface as the 'default' user and can access all data and resources.
If the integration node or integration server is configured to use file-based authorization, you assign permissions to the role by using the mqsichangefileauth command or in the node.conf.yaml or server.conf.yaml configuration file. Permissions are set for the integration node or integration server, and the data capture object. For more information about setting permissions for file-based authorization, see Setting file-based permissions.
- SYSTEM.BROKER.AUTH
- SYSTEM.BROKER.AUTH.integrationServerName
- SYSTEM.BROKER.DC.AUTH
If the integration node or integration server is configured to use LDAP authorization, you assign permissions to the role by configuring node.conf.yaml or server.conf.yaml configuration file. Permissions are set for the integration node or integration server. For information about setting permissions for LDAP authorization, see Configuring authorization by using LDAP groups.
For more information about how to set the permissions that are required for using the web user interface, see Controlling access to data and resources in the web user interface.
When you define your roles and set the required permissions, you can assign web users to the appropriate role, and they acquire permissions through their assigned role.
Procedure
Complete these steps to grant access to web users based on their assigned role: