What is the purpose of keystores which are configured during the BRMS / BPMS installation?
Issue
○ 3 keystores generated by the installer are:
- HOME/server.keystore.jks
- HOME/jboss-eap-6.1/vault.keystore
- HOME/client/client0.keystore.jks
○ Server keystore:
- Is only referenced in the JMS/Hornet configuration in standalone.xml?
- Assuming this is NOT needed?
- And only used if we connect via a JMS client to JBOSS over SSL?
○ Vault keystore:
- Is only referenced in the VAULT configuration node in standalone.xml?
- Looks like it holds encrypted passwords, which can be referenced by ${VAULT...} values in our
standalone.xml?
- Assuming this is only needed if we have ${VAULT...} passwords in standalone.xml
○ Client keystore:
○ Is not referenced any where
○ Assuming this is NOT needed
○ And could be used by an external (to jboss) client that wanted to connect to JMS on JBOSS
over 2-way SSL
Is the understanding above correct?
Environment
- Red Hat JBoss BRMS
- 6.x
- Red Hat JBoss BPMS
- 6.x
- Graphical installer on top of EAP
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.
Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.
