Reputation: 11
Activemq Artemis Console Certificate Authentication
I am trying to setup the built in hawt.io console to authenticate users based off of certificates instead of username and password. I've looked around and can't find much info on how to go about doing this. The best I found was this person asking the same question which pretty much allowed me to get the same spot they are in.
Just to reiterate I am not trying to setup certificate authentication for the queues (I already have that working), but rather the management console that runs with the broker.
Any advice on how to do this would be much appreciated!
Upvotes: 1
Views: 494
Answers (2)
Reputation: 11
According to Tadayoshi Sato. Not yet supported but there is an open ticket:
https://github.com/hawtio/hawtio/issues/2469
Upvotes: 0
Reputation: 35008
The management console is served by an embedded instance of Jetty. Therefore, if you want to configure the management console for certificate based authentication you'll need to find out if Jetty itself supports this functionality. I tend to doubt that Jetty supports certificate based authentication because I have looked for this myself and I've not found anything. Looking at their JAAS code I see no evidence that they are even attempting to handle this use-case. Google searches have only turned up SSL/TLS configuration information, not actual JAAS auth details.
Upvotes: 1
Related Questions
- ActiveMQ Artemis "needClientAuth=true" errors out "Empty client certificate chain." message (AMQ222208)
- Securing ActiveMQ Messaging in JBoss EAP
- Updating SSL certificates for ActiveMQ Artemis 2.18.0
- ActiveMQ Artemis mutual SSL issue
- Steps needed to configure Artemis SSL client authentication using trusted CA Certificates
- Artemis ActiveMQ configuration with SSL support
- Configure TLS on ActiveMQ Artemis
- How to activemq in ssl
- ActiveMQ queue authentication by certificate
- ActiveMQ and Client identity through certificate authentication