保护 JMS 消息驱动通道适配器的安全
我正在使用消息驱动通道适配器从 MQ 队列读取消息,这在开发中运行良好。现在,为了准备第一个生产版本,我必须读取安全队列。
我需要做什么?
我想我需要确保将以下内容设置为系统属性,但是设置什么值?
javax.net.ssl.trustStore
javax.net.ssl.trustStorePassword
javax.net.ssl.keyStore
javax.net.ssl.keyStorePassword
我从 jndi 获取 connectionFactory,它具有 SSLCipherSuite 设置。
我已获得明文密码和包含密钥库和信任库的 JKS 文件
接下来我需要做什么?
I am using a message-driven-channel-adapter to read messages off MQ queue, and this has been working fine in development. Now, in preparation for the first production release, I have to read a secured queue instead.
What do I need to do?
I think I need to make sure the following are set as system properties, but with what values?
javax.net.ssl.trustStore
javax.net.ssl.trustStorePassword
javax.net.ssl.keyStore
javax.net.ssl.keyStorePassword
I get the connectionFactory from jndi and it has the SSLCipherSuite set.
I have been given a clear text password and a JKS file that contains both the keystore and the truststore
What do I need to do next?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
这些值是 JKS 的路径和密码。例如,
java -cp "%CLASSPATH%" -Djavax.net.ssl.trustStore="C:\Program Files\IBM\WebSphere MQ\key.jks" -Djavax.net.ssl.keyStore="C :\Program Files\IBM\WebSphere MQ\key.jks" -Djavax.net.ssl.keyStorePassword=password com.ibm.examples.JMSDemo -pub %*
假设这是 WebSphere MQ 并且密钥库/信任库是配置了正确的对象,这就是所需要的。
The values are the paths and password for the JKS. For example,
java -cp "%CLASSPATH%" -Djavax.net.ssl.trustStore="C:\Program Files\IBM\WebSphere MQ\key.jks" -Djavax.net.ssl.keyStore="C:\Program Files\IBM\WebSphere MQ\key.jks" -Djavax.net.ssl.keyStorePassword=password com.ibm.examples.JMSDemo -pub %*Assuming this is WebSphere MQ and the keystore/truststore are configured with the right objects, this is all that is required.