Using RACF with IBM MQ


If your organisation is using RACF to provide the security function for IBM MQ, then this course is a must for your administrators and systems programmers. Designed, written and presented by specialist RACF consultants, this course introduces the IBM MQ RACF Interface. The course describes and explains how RACF is implemented within a MQ environment.
This course is only available for one-company, on-site presentations.

Objectives

On successful completion of this course you will be able to:

  • describe the necessary requirements to implement a RACF MQ application
  • define MQ channels, commands and queues to RACF
  • describe the major interactions between RACF and MQ
  • understand the issues surrounding data integrity, encryption and decryption
  • get the most out of the RACF Started Task Class
  • take advantage of the RACF Class Descriptor Table or the new RACF CDT class to create new DB2 regions
  • understand and implement SSL
  • use Queue Managers
  • use MQ commands.

Who Should Attend

The course is suitable for all Security Administrators, Systems Programmers responsible for MQ and MQ Administrators.

Prerequisites

Attendees should have a clear understanding of z/OS at a conceptual level and have a basic understanding of RACF (this can be gained by attending the RSM course Understanding RACF). A familiarity with IBM MQ and knowledge of TSO/ISPF and JCL is also required.

Duration

1 day

Fee (per attendee)

£475 (ex VAT)

Course Code

RAMQ

Contents

Security Overview

Introduction; Non-Queue Sharing Groups; Queue Sharing Groups; WebSphere MQ security overview.

Controlling Security for IBM MQ for z/OS

High Level Qualifiers; Shared Queue Manager environment; Controlling security - switch profiles; Security switch options; Queue Sharing Groups - the rules; Switch profiles - examples.

Access Control and RACF

Introduction; Connection security; RESLEVEL profile; RESLEVEL & Batch; RESLEVEL and CICS; Reslevel and IMS; Reslevel and Channel Initiator connections; RESLEVEL & IGQ; MQ API security; High Level Qualifiers; MQOPEN & MQPUT1; Queues requiring additional consideration; Model queues; MQADMIN class; API security - userids; How to read UserID tables; Userids - channel security; Receiving channels using TCP/IP; Receiving channels using APPC (LU6.2); Userids - IGQ security; MQ command security - two types; Command security - Userids; Link Level security - SSL.

RACF & IBM MQ Administration

MQ commands; Security messages; Security Refresh messages; Security Refresh messages - display after refresh; Administration - RESLEVEL auditing; Bibliography.


© RSM Technology 2017