To monitor the Bluemix Liberty runtime with JConsole, you must complete the following steps:
- Push your application within a server package containing an appropriate server.xml.
- Start the JConsole application with the appropriate system properties on the command line.
- Provide the proper Remote Process url, Username, and Password to JConsole.
Here is more detail on each of the above steps.
1. Push the server package containing your application limiting it to a single instance. This is the default (-i=1). Your server.xml must contain the monitor-1.0 and restConnector-1.0 features. It also must contain a basicRegistry element and administrator-role element as shown below:
<user name="jconuser" password="jconpassw0rd"/>
NOTE: The password should be encoded with the securityUtility tool provided with Liberty.
2. JConsole is included with your java installation. Go to <java-home>/bin (java 1.7 or higher) and run this command:
The truststore parameters will take the following defaults that should work in most cases:
-J-Djavax.net.ssl.trustStore=<java-home>/jre/lib/security/cacerts -J-Djavax.net.ssl.trustStorePassword=changeit -J-Djavax.net.ssl.trustStoreType=jks
Specify appropriate truststore parameters if necessary.
3. Fill in the Remote Process field with this url:
service:jmx:rest://<appName>.mybluemix.net:443/IBMJMXConnectorREST. Also fill in the Username and Password fields with an administrator-role role user and password from the server.xml. Click Connect.
The connection should succeed and JConsole will start monitoring.
If your connection fails, you can produce logs to help diagnose the problem. First, try collecting client side trace by adding this to the jconsole command: -J-Djava.util.logging.config.file=c:/tmp/logging.properties
Here is a sample logging.properties file:
java.util.logging.FileHandler.pattern = /tmp/jmxtrace.log
java.util.logging.FileHandler.limit = 50000
java.util.logging.FileHandler.count = 1
java.util.logging.FileHandler.formatter = java.util.logging.SimpleFormatter
You can also add this to the jconsole comand:
-J-Djavax.net.debug=ssl, which will produce SSL diagnostic tracing in a separate JConsole output window. Lastly, you can enable tracing on the server side by adding this to your server.xml:
Share this post: