setmqspl
Use the setmqspl command to define a new security policy, alter an already existing one, or remove an existing policy.
Syntax
Command flag | Explanation |
---|---|
-m
|
Queue manager name.
This flag is mandatory for all actions on security policies. |
-p
|
Policy name.
Set the policy name to the name of the queue you wish the policy to apply to. |
-s
|
Digital signature algorithm.
Advanced Message Security supports the following values:
Important:
|
-e
|
Digital encryption algorithm.
Advanced Message Security supports the following encryption algorithms:
Important: Encryption algorithms' name must be in uppercase
|
-r
|
The distinguished name (DN) of the message recipient (if provided, the
certificate pertaining to the DN is used to encrypt a given message). Recipients can be specified,
only if the encryption algorithm is different from NONE. Multiple recipients can be
included for a message. Each DN must be provided with a separate -r flag. Important:
|
-a
|
Signature DN that is validated during message retrieval. Only messages signed by a user with a DN provided are accepted during the retrieval. Signature DNs can be specified only if the signature algorithm is different from
NONE . Multiple authors can be included. Each author needs to have a separate
-a flag.
Important: DN attribute name must be in uppercase.
|
-t
|
Toleration flag that indicates whether a policy that is associated with a queue can be ignored when an attempt to retrieve a message from the queue involves a message with no security policy set. Valid values include:
|
-remove
|
Delete policy.
If specified, only the
|