Return-Path: Delivered-To: apmail-activemq-users-archive@www.apache.org Received: (qmail 45460 invoked from network); 12 Apr 2010 17:46:56 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 12 Apr 2010 17:46:56 -0000 Received: (qmail 7451 invoked by uid 500); 12 Apr 2010 17:46:56 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 7422 invoked by uid 500); 12 Apr 2010 17:46:55 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 7414 invoked by uid 99); 12 Apr 2010 17:46:55 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 12 Apr 2010 17:46:55 +0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=FREEMAIL_FROM,SPF_HELO_PASS,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of lists@nabble.com designates 216.139.236.158 as permitted sender) Received: from [216.139.236.158] (HELO kuber.nabble.com) (216.139.236.158) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 12 Apr 2010 17:46:49 +0000 Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1O1NiO-0005cy-Fd for users@activemq.apache.org; Mon, 12 Apr 2010 10:46:28 -0700 Message-ID: <28219167.post@talk.nabble.com> Date: Mon, 12 Apr 2010 10:46:28 -0700 (PDT) From: Mike Rawlins To: users@activemq.apache.org Subject: Re: https In-Reply-To: <36e91d9d1002170505y39f0410fu702e1ef12400cac5@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: mcr@mcrawlins.net References: <27563446.post@talk.nabble.com> <36e91d9d1002152346l2a9905c5gb284df0ab965fc16@mail.gmail.com> <27622587.post@talk.nabble.com> <36e91d9d1002170505y39f0410fu702e1ef12400cac5@mail.gmail.com> X-Virus-Checked: Checked by ClamAV on apache.org I don't know what the original submitter was trying to do, but I have a question and it seems as if I might have the same problem. The HTTPS configuration for the broker seems to enable the client to validate the identity of the broker and encrypt the connection. However, this may not be enough for my use case. I would also like to have the broker validate https connections from clients, and this doesn't seem to work. I can connect to the broker from a client without importing the client's certificate into the broker's truststore. The connection comes up OK, the client is able to send messages to the broker, and I get no errors. As you note, the needClientAuth option for HTTPS seems to be ignored. Is the functionality I'm looking for not implemented yet, or is it not there by design? If it's not there by design, is there another way to accomplish what I would like to do? Thanks, Mike Dejan Bosanac wrote: > > Hi, > > what exactly are you trying to achieve and what error are you getting? > > -- View this message in context: http://old.nabble.com/https-tp27563446p28219167.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.