Renew the TLS certificate in the messaging subsystem without restarting JBoss EAP

Solution Verified - Updated -

Issue

  • I want to be able to renew the TLS certificates on my JBoss EAP without having to do a full restart.
  • I have 3 subsystems which require TLS - undertow, remoting and messaging-activemq. The first 2 can be renewed by using the Elytron ssl-context. And running the following jboss-cli commands:
/subsystem=elytron/key-store=MY_KS:load()
/subsystem=elytron/key-manager=MY_KM:init()
  • However, the messaging-activemq subsystem doesn't seem to have a way to add ssl-context to the netty connectors and acceptors

Environment

  • Red Hat JBoss Enterprise Application Platform (JBoss EAP)
    • 7.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content