Qpid broker reports EXTERNAL mechanism not supported if CN in SSL certificate malformed
Issue
- EXTERNAL SASL mechanism is used for qpid client authentication over SSL
- CN in client's certificate is malformed (i.e. empty)
- broker rejects the client connection (valid behaviour)
- BUT it rejects with note it does not support EXTERNAL mexhanism
The rejection note is very misleading, as the broker does support EXTERNAL mechanism. Just the certificate is wrong.
Is it possible to make the rejection note more relevant?
Environment
Red Hat Enterprise MRG Messaging 2.3.6
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.