|
The problem scenario seems to have changed now. In your initial post you said you were getting 2035 on an mqconn. Now it seems you are getting this on some other api call. What api call is it??? Mqopen??? And are you still with the same authorizations as mentioned below.
When you do a conn, it has no bearing if you make regular api calls or pcf and hence CONNECT and DSP should be equally good to get mqconn through successfully.
So the question is, on what call does it fail and what are the authorizations set at that time for that userid.
Cheers
Kumar
-------Original Message-------
Date: Friday, June 20, 2003 05:28:33 AM
Subject: Re: Setting up a user on NT to restrict to a single queue
Ok, I have narrowed it down to the PCF API calls, when I take these out of the program it works fine with the restricted security... so what do I need to add to a queue object for PCF access ???
The System Administrators guide does not make this very clear at all.
Sid
Howdy all,
I am having trouble setting up a user to just be able to Browse/Inquire and destructively GET from a single queue. I granted +connect on the qmgr and browse, get and inq on the queue but I setup a servercon chanel and tied the MCA to the users login NT account name.
However, all I get are 2035 errors when the client connects.
C:\>dspmqaut -m QML_MQM -t qmgr -g tsib
Entity test_user has the following authorizations for object QML_MQM:
connect
dsp
C:\>dspmqaut -m QML_MQM -n TSIB.data -t q -p tsib
Entity tsib has the following authorizations for object TSIB.data:
get
browse
put
inq
set
dsp
passid
passall
setid
setall
What am I missing ?
Sid Young B I.T. (cs dc) AD (cse)
DBA
Intranet Developer
Analyst / Programmer
Information Systems Department
QML Pathology
Phone: (07) 3840 4941
Fax: Fax??? This is the 21st Century!
www.qml.com.au
| |
60 Ferry Rd
West End, QLD 4101 |
| 
IncrediMail - Email has finally evolved - Click Here