For a JMS trigger, the execution user indicates which credentials Integration Server should use when invoking services associated with the JMS trigger. When a client invokes a service via an HTTP request, Integration Server checks the credentials and user group membership of the client against the Execute ACL assigned to the service. Integration Server performs this check to make sure that the client is allowed to invoke that service. When a JMS trigger executes, however, Integration Server invokes the service when it receives a message rather than as a result of a client request. Integration Server does not associate user credentials with a message. You can specify which credentials Integration Server should supply when invoking a JMS trigger service by setting an execution user for a JMS trigger.

You can instruct Integration Server to invoke a service using the credentials of one of the predefined user accounts (Administrator, Default, Developer, Replicator). You can also specify a user account that you or another server administrator defined. When Integration Server receives a message for the JMS trigger, Integration Server uses the credentials for the specified user account to invoke the service specified in the routing rule.