Fuse ESB - ActiveMQ Security Guide - SSL/TLS for the Apache ActiveMQ JMX Connector

SSL/TLS for the Apache ActiveMQ JMX Connector

Overview

Enable SSL/TLS

<beans ... >
  <broker xmlns="http://activemq.apache.org/schema/core" ... >
    ...
    <managementContext>
      <managementContext createConnector="true"
                         connectorPort="2011"
                         jmxDomainName="org.apache.activemq">
        <property xmlns="http://www.springframework.org/schema/beans" name="environment">
          <map xmlns="http://www.springframework.org/schema/beans">
            <entry xmlns="http://www.springframework.org/schema/beans"
                   key="javax.net.ssl.keyStore"
                   value="${activemq.base}/conf/broker.ks"/>
            <entry xmlns="http://www.springframework.org/schema/beans"
                   key="javax.net.ssl.keyStorePassword"
                   value="password"/>
          </map>
        </property>
      </managementContext>
    </managementContext>
    ...
  </broker>
  ...
</beans>

Test the SSL/TLS connection

jconsole -J-Djavax.net.ssl.trustStore=ActiveMQInstallDir/conf/client.ts
         -J-Djavax.net.ssl.trustStorePassword=password

Tip

Don't forget the -J switch, which passes the options through to the underlying Java virtual machine (JVM).

Comments powered by Disqus