Local queue creation security is disclosed. In one embodiment, for a message transaction system being implemented in conjunction with an operating system provide user-level security only, local machine- or local-level security is provided for by a service running on a client. In one embodiment, a method includes sending a first request to create a local queue, by an application of a client from a function of the client to a server. If the server determines that the user under which the application is running has permission to create local queues, the local queue is created. Otherwise, a second request to create the local queue is sent from the function to a service having permission to create local queues. If the service determines that the second request originated locally, then the service calls the server to create the local queue.