Configuring JMS client applications to perform client SSL authentication

You can configure JMS client applications to authenticate to the bus by using client Secure Sockets Layer (SSL) authentication.

Before you begin

About this task

This task has two objectives. First, you install the SSL certificate for the client application in the keystore for the application client. Second, you modify the sib.client.ssl.properties file to use client SSL authentication. You use the Key Management (iKeyman) utility to work with SSL certificates. The iKeyman user interface is based on Java and uses the Java support that is installed with IBM® HTTP Server.

Take the following steps to configure a JMS client application to use client SSL authentication:

Procedure

  1. Start the iKeyman user interface. Refer to the iKeyman User Guide available from IBM developer kits for more information about using iKeyman.
  2. When prompted, select the keystore for the JMS client application.
  3. When prompted for the type of certificate to work with, select the option Personal certificates. A list of personal certificates is displayed.
  4. Select that you want to import a certificate to the selected keystore.
  5. When prompted, type the location and name for the certificate. You can provide an alias for the certificate. The certificate is installed into the keystore of the client application.
  6. Close the iKeyman user interface.
  7. Open a text editor to work with the sib.client.ssl.properties properties file. This file is in the profile_root/properties directory of the application server installation, where profile_root is the directory in which profile-specific information is stored.
  8. Set the value for the property com.ibm.ssl.client.clientAuthentication to True.
  9. Set the value for the property com.ibm.ssl.client.keyStoreClientAlias to the alias name for the certificate in the client keystore.
  10. Save the sib.client.ssl.properties properties file.

Results

You have now configured a JMS client application to use client SSL authentication.
Task topic    

Terms and conditions for information centers | Feedback

Last updated: April 18, 2014 05:01 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=phil&product=was-nd-iseries&topic=tjr_config_client_SSL
File name: tjr_config_client_SSL.html