JMS and SSL to MQSeries
843830Nov 30 2004 — edited Nov 25 2008I am having a problem authenticating to MQSeries from a JMS client using client user certificates.
I am using jdk1.4.2 and MQSeries JMS version 5.3. I am not using administered object but rather I am creating the com.ibm.mq.jms.MQQueueConnectionFactory() class directly in my code. I set the cipher spec on the connection factory.
qcf.setSSLCipherSuite("SSL_RSA_WITH_3DES_EDE_CBC_SHA");
I have installed the certificates into the java keystore � cacerts file. I have been able to successfully do SSL encryption without user authentication. When I change the MQ channel to require authentication, I am not able to establish the JMS connection.
I am not sure how to specify which user certificate JMS should use to connect to the queue manager. I have tried issuing the createQueuConnection without passing in a user id and password and I have tried by referencing the alias the user certificate was installed into the key store with and null for the password. Neither seems to work.
Can anyone please tell me how to tell JMS which user certificate it should use when trying to connect? Here are the API calls I am using.
QueueConnection queueConnection = qcf.createQueueConnection("key_store_alias",null);
QueueConnection queueConnection = qcf.createQueueConnection();
Thanks,
Tom