Reputation: 1437
ibm mq + ssl + self signed certs
Is it possible to use openssl to generate the necessary certs to provide self signed certs for ibm MQ broker (version 9) and client. Or can i only use ibm's internal mechanism to generate the certs (ie. runmqckm -cert ).
Please advise. B.
Upvotes: 1
Views: 538
Answers (1)
Reputation: 31852
The queue manager requires a CMS format keystore that must be managed using IBM's tools. I recommend runmqakm instead of runmqckm to manage the queue manager's keystore since runmqakm is compiled C and you can run through an entire script of commands before runmqckm is done firing up its JRE.
For anything that can use a JKS, feel free to use OpenSSL, Keytool, or anything that works with x.509 certificates. This includes Broker's Java nodes, MQ File Transfer Edition agents, MQ client apps using native Java or JEE, and so on.
Upvotes: 4
Related Questions
- Java mqtt client SSL config with self signed certificate
- How to establish SSL communication be IBM MQ & the MQ java client?
- How to correct IBM MQ Error when SSL is enabled
- IBM MQ: Establishing an SSL connection
- Using SSL support for Java clients & WebSphere MQ
- Configure IBM Websphere Mq server and a Java Client to Create SSL Connection
- Configure SSL for IBM MQ v7.5
- Websphere MQ SSL connection using java
- SSL with WebSphere MQ 7
- SSL connection to IBM MQ through ssl channel from java client