activemq-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From madandini <michael.dand...@gdc4s.com>
Subject ActiveMQ and CRLs
Date Tue, 11 Dec 2007 21:11:24 GMT

Is it possible to use Certificate Revocation Lists to authenticate clients
connecting to an ActiveMQ broker?  

I've seen some Java properties that can enable revocation checking (i.e.
com.sun.net.ssl.checkRevocation & com.sun.security.enableCRLDP), but when I
try to run the ActiveMQ broker with them, I receive a
java.security.cert.CertPathValidatorException for no CRL found.  I haven't
found any additional properties where I can specify a CRL file.  Maybe I'm
missing something?

Also, I saw that you can create a custom security plugin for the ActiveMQ
broker (http://activemq.apache.org/security.html).  If it turns out that I
can't use Java properties for CRL checking, would it be possible to write a
JAAS plugin for it?

Thank you,

- Michael
-- 
View this message in context: http://www.nabble.com/ActiveMQ-and-CRLs-tp14283492s2354p14283492.html
Sent from the ActiveMQ - User mailing list archive at Nabble.com.


Mime
View raw message