Using TLS with IBM MQ classes for JMS

IBM® MQ classes for JMS applications can use Transport Layer Security (TLS) encryption. To do this they require a JSSE provider.

IBM MQ classes for JMS connections using TRANSPORT(CLIENT) support TLS encryption. TLS provides communication encryption, authentication, and message integrity. It is typically used to secure communications between any two peers on the Internet or within an intranet.

IBM MQ classes for JMS uses Java Secure Socket Extension (JSSE) to handle TLS encryption, and therefore requires a JSSE provider. JSE v1.4 JVMs have a JSSE provider built-in. Details of how to manage and store certificates can vary from provider to provider. For information about this, see your JSSE provider's documentation.

This section assumes that your JSSE provider is correctly installed and configured, and that suitable certificates have been installed and made available to your JSSE provider. You can now use JMSAdmin to set a number of administrative properties.

If your IBM MQ classes for JMS application uses a client channel definition table (CCDT) to connect to a queue manager, see Using a client channel definition table with IBM MQ classes for JMS.