Enable Extensible Permissions

Extensible permissions are enabled in the EMS server, through parameters in the tibemsd.conf configuration file.

The required parameters are:

  • authorization—enables authorization.
  • jaci_class—specifies the class that implements the Permissions Module.
  • security_classpath—specifies the JAR files and dependent classes used by the Permissions Module.

The Permissions Module will be used to grant permissions only to those destinations that are defined as secure in the topics.conf and queues.conf configuration files. If there are no topics or queues that include the secure property, then the Permissions Module will never be called because the server does not check permissions at all.

Because the Permissions Module runs in the Java virtual machine, you must also enable the JVM in the EMS server. See Enable the JVM for more information.