Using SSL with JMS 1.1 Async Receive adapter or the JMS Acquire Connection and Session service
SSL is a feature of the JMS 1.1 Async Receive adapter or the JMS Acquire Connection and Session service.
You can choose one of the following:
- Server Authentication mode (server gets authenticated) - only one-sided handshake happens. During the handshake, the server sends its certificate and it gets authenticated against the public key already checked into the system.
- Client Authentication mode (first the server gets authenticated and then the client gets authenticated by the server) - public part of the system certificate is also checked into the trusted store of the server so that when server wants to authenticate the client, it can do so against this already present public key.
To use SSL, you will need to know the following information when
configuring the adapter:
- JMS Provider name (WebLogic, Websphere, ActiveMQ, or TIBCO)
- System Certificate name
- CA Certificate name
If you are using a JMS Provider that is not listed, you will need to go back and select the Non-SSL mode.
In addition, if you are using a business process for the SSL
for send and receive sync operations, you can do so by setting the
following properties:
- SSL_SETTING_ssl_option=SSL_MUST
- JmsProviderName="providername"
- SSL_SETTING_ca_cert_ids="certificatename"