Is it possible to configure xa-recovery process with tls/ssl in JBoss 7.2?

Posted on

Our application is deployed in Jboss EAP 7.2 and connects to a Websphere IBM MQ 9.0 server through an IBM MQ Resource Adapter 9.0.4.0.
Reading and writing from/to queues has been configured in tls/ssl as in the standalone.xml section attached below.
We need to know if it is possible and, if so, how to configure the section of the resource adapter to make the xa-recovery process connects in tls/ssl to the IBM MQ server.

        [...]
        <property name="queuemanager.sslCipherSuite" value="${env.mq.sslCipherSuite}"/>
        <property name="javax.net.ssl.trustStore" value="${env.ssl.trustStore}"/>
        <property name="javax.net.ssl.trustStorePassword" value="${env.ssl.trustStorePassword}"/>
        <property name="javax.net.ssl.keyStore" value="${env.ssl.keyStore}"/>
        <property name="javax.net.ssl.keyStorePassword" value="${env.ssl.keyStorePassword}"/>
        <property name="com.ibm.mq.cfg.useIBMCipherMappings" value="${env.mq.useIBMCipherMappings}"/>
        <property name="jdk.security.allowNonCaAnchor" value="${env.ssl.allowNonCaAnchor}"/>

        [...]

                <resource-adapter id="wmq.jmsra.rar">
                    <archive>
                        wmq.jmsra.rar
                    </archive>
                    <transaction-support>XATransaction</transaction-support>
                    <config-property name="maxConnections">
                        100
                    </config-property>
                    <config-property name="reconnectionRetryCount">
                        10
                    </config-property>
                    <connection-definitions>
                        <connection-definition class-name="com.ibm.mq.connector.outbound.ManagedQueueConnectionFactoryImpl" jndi-name="java:/jms/MYQCF" pool-name="MYQCF">
                            <config-property name="channel">
                                ${queuemanager.channel}
                            </config-property>
                            <config-property name="hostName">
                                ${queuemanager.hostName}
                            </config-property>
                            <config-property name="transportType">
                                ${queuemanager.transportType}
                            </config-property>
                            <config-property name="queueManager">
                                ${queuemanager.queueManager}
                            </config-property>
                            <config-property name="port">
                                ${queuemanager.port}
                            </config-property>
                            <config-property name="sslCipherSuite">
                                ${queuemanager.sslCipherSuite}
                            </config-property>
                            <xa-pool>
                                <max-pool-size>200</max-pool-size>
                                <flush-strategy>EntirePool</flush-strategy>
                            </xa-pool>
                            <security>
                                <application/>
                            </security>
                            <recovery>
                                <!-- How to configure TLS/SSL? -->
                            </recovery>
                        </connection-definition>
                    </connection-definitions>
                     [...]
AD

Responses