As part of https://jira.jboss.org/jira/browse/JBMESSAGING-1535 I'm making the security finer grained. Locallly so far i have: | SEND | CONSUME | MANAGE | CREATE_DURABLE_QUEUE | DELETE_DURABLE_QUEUE | CREATE_TEMP_QUEUE | DELETE_TEMP_QUEUE | with regard to the last 4 the problem is it doesn't cover all areas, since the queue being created may be non temporary and non durable. Another right 'createQueue' would fix this but the that implies that if someone had createQueue privileges then by default they have createTempQueue and createDurableQueue privileges which may not be the case. Or we could allow anyone to create non durable non temp queues. wdyt? View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4218714#... Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&a...