Configuring administration security to use file-based, queue-based, or LDAP authorization
You can enable administration security for an integration node or integration server, either by using the mqsichangeauthmode command, or by setting the security properties in the node.conf.yaml or server.conf.yaml configuration file. If you enable administration security for an integration node, you can also choose which authorization mode (file-based, queue-based, or LDAP authorization) will be used for setting permissions. For independent integration servers (which are not managed by an integration node), you can specify file-based authorization, or LDAP authorization.
Before you begin
About this task
You control access to an integration node (and the integration servers that it manages) by setting file-based, or queue-based permissions, or LDAP authorization. You can set file-based permissions either by using the mqsichangefileauth command, or by setting properties in the node.conf.yaml configuration file. You can set queue-based permissions by using IBM® MQ authorization queues on the queue manager that is specified on the integration node. You can set LDAP authorization by setting properties in the node.conf.yaml configuration file.
You can control access to an independent integration server (which is not managed by an integration node) by using file-based permissions or LDAP authorization. You can set file-based permissions either by using the mqsichangefileauth command or by setting properties in the server.conf.yaml configuration file. You can set LDAP authorization by setting properties in the server.conf.yaml configuration file.