Home » Products for IBM MQ » MQ Authenticate User Security Exit Overview

Overview Trial Manuals Customers Lifecycle Buy Now!

MQ Authenticate User Security Exit Overview

MQAUSX logoThe MQ Authenticate User Security Exit v3.5.0 is a solution that allows a company to fully authenticate a user who is accessing an IBM MQ resource.

The security exit will operate with IBM MQ v7.1, v7.5, v8.0, v9.0, v9.1, v9.2, v9.3 and v9.4 in Windows, IBM i (OS/400), Unix and Linux environments. It works with Server Connection, Client Connection, Sender, Receiver, Server, Requester, Cluster-Sender and Cluster-Receiver channels of IBM MQ queue manager.

On AIX, HP-UX, Linux, Solaris and Windows, MQAUSX can be configured and used with a non-default installation of MQ in a multi-install MQ environment.

The MQ Authenticate User Security Exit solution is comprised of 2 components: client-side security exit and server-side security exit.

    MQAUSX is 4 products in 1:
  1. If the client application is configured with the client-side security exit then the user credentials are encrypted and sent to the remote queue manager. This is the best level of security.
  2. If the client application is not configured with the client-side security exit and both the client-side AND server-side are at MQ V8 then MQ V8 will encrypt the user credentials as they flow from the client application to the queue manager.
  3. If the client application is not configured with the client-side security exit then the user credentials are sent in plain text to the remote queue manager. This feature is available for Java/JMS, Java and C# DotNet client applications. For native applications (i.e. C/C++), then the application must use and populate the MQCSP structure with the UserID and Password.
  4. If the MQAdmin sets the MQAUSX IniFile parameter NoAuth to Y then it functions just like MQSSX. MQSSX does not authenticate. It filters the incoming connection based on UserID, IP address and/or SSL DN.

Client-Side Security Exit Summary

Server-Side Security Exit Summary

* Unix only
** Windows only

Pricing

Operating System
MQ v7.1, v7.5, v8.0, v9.0, v9.1, v9.2, v9.3, & v9.4
AIX v7.1 or higher 64-bit
IBM i v7.1 or higher 64-bit
HP-UX IA64 v11.23 or higher 64-bit
Linux x86 32-bit
Linux x64 64-bit
Linux on POWER 64-bit
Linux on System z (zSeries) 64-bit
Raspberry Pi (ARM) 32-bit
Solaris SPARC v10 & v11 64-bit
Solaris x64 v10 & v11 64-bit
Windows 7, 8, 8.1, 10 & 11 32-bit & 64-bit
Windows Server 2008, 2012, 2016, 2019 & 2022 32-bit & 64-bit

 

Product Price (USD) * Ordering
MQ Authenticate User Security Exit (per license**) $499.00  
Yearly maintenance and support fee 15%  
Total $574.00

* Volume discounts available for as low as $299.00 USD per license plus 15% yearly maintenance and support fee.

** MQ Authenticate User Security Exit is licensed on a per queue manager basis.

Enterprise License for MQ Authenticate User Security Exit:
Enterprise License for MQ Authenticate User Security Exit sells for $90,000 USD plus 15% yearly maintenance and support fee. An enterprise license will allow a company to have unlimited number of queue managers use MQ Authenticate User Security Exit at an unlimited number of locations.