>
Journal · MQ, Maximo and Middleware
MQ, Maximo and Middleware

IBM MQ licensing and audit defense.

IBM MQ sits at the center of messaging estates, which is exactly why it draws audit attention. It is licensed by capacity metric, its editions carry different rights, and the clients and idle queue managers around it are easy to miscount in IBM favor.

May 2026 · 6 min read · MQ, Maximo and Middleware

How IBM MQ is licensed

MQ server entitlements are capacity based. The traditional metric is the Processor Value Unit, counted across the cores where a queue manager runs, with sub-capacity available when the IBM License Metric Tool is deployed and operating correctly. Newer entitlements and the Cloud Pak packaging use the Virtual Processor Core metric, counting the virtual cores allocated to the workload. MQ Advanced adds capabilities such as Advanced Message Security and managed file transfer, which carry their own entitlement and must be licensed where those features are in use.

MQ clients are a separate question from MQ servers. Client connectivity supplied with an entitled server is generally permitted, but standalone client deployments and the features they reach into need to be matched to the right grant. Conflating the two is a common source of inflated counts.

The traps auditors probe

  • Full-capacity counting where sub-capacity rights should apply but ILMT coverage lapsed.
  • Idle, passive, or multi-instance standby queue managers swept in at full count.
  • MQ Advanced features in use on entitlements that only cover base MQ.
  • Disaster recovery and cold-standby nodes counted as active production.

The recurring theme is the same as elsewhere in the IBM stack. When the tooling that proves the lower number is incomplete, the auditor defaults to the higher one. An MQ estate that runs lean can still present as full-capacity exposure if the sub-capacity evidence is not in order.

How we defend an MQ estate

Reconcile the metric to the deployment

We confirm which metric governs each entitlement and recount the deployment on that basis, separating active production queue managers from passive, standby, and non-production instances that carry different rights. We test the PVU reconciliation independently rather than accepting the audit figure.

Pin down feature usage

MQ Advanced exposure depends on whether the advanced features are genuinely in use. We establish where Advanced Message Security and managed file transfer are actually deployed, so feature entitlements are matched to real usage and not assumed across the estate.

What this means under audit

An MQ finding tends to assume full capacity, active counting of every queue manager, and broad feature use. Reconciled to the governing metric and the real deployment, the defensible number is usually far smaller, within the 30 to 92% reduction range our engagements deliver.

Related reading
IBM MQ Licensing and Audit DefenseMQ PVU and VPC Metrics ComparedMQ Appliance vs Software LicensingIBM Integration Bus and ACE Licensing
Talk to Audit Defense →Get audit help now

The IBM Audit Brief

Audit triggers, ILMT pitfalls, and settlement tactics for IBM software buyers.

IBM Audit

Independent, buyer side IBM software audit defense and negotiation. Not affiliated with IBM Corporation.

Services
Audit DefenseAudit NegotiationILMT RemediationSub-Capacity Defense
Products
WebSphereDb2CognosCloud Pak
Company
AboutContactJournalWhite Papers
Independent. Not affiliated with IBM Corporation.Buyer Side · Est. 2019