Return-Path: X-Original-To: apmail-activemq-users-archive@www.apache.org Delivered-To: apmail-activemq-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 44945108C9 for ; Sun, 9 Feb 2014 22:49:32 +0000 (UTC) Received: (qmail 49330 invoked by uid 500); 9 Feb 2014 22:49:31 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 49255 invoked by uid 500); 9 Feb 2014 22:49:31 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 49247 invoked by uid 99); 9 Feb 2014 22:49:31 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 09 Feb 2014 22:49:31 +0000 X-ASF-Spam-Status: No, hits=3.5 required=5.0 tests=HTML_MESSAGE,SPF_PASS,URI_HEX X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy includes SPF record at spf.trusted-forwarder.org) Received: from [216.139.250.139] (HELO joe.nabble.com) (216.139.250.139) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 09 Feb 2014 22:49:25 +0000 Received: from [192.168.236.139] (helo=joe.nabble.com) by joe.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1WCdB0-0001DO-I3 for users@activemq.apache.org; Sun, 09 Feb 2014 14:48:38 -0800 Date: Sun, 9 Feb 2014 14:48:23 -0800 (PST) From: artnaseef To: users@activemq.apache.org Message-ID: <62D4FE9E-A4EA-4406-A392-2A39EE4749BD@artnaseef.com> In-Reply-To: <1391985468926-4677667.post@n4.nabble.com> References: <1391985468926-4677667.post@n4.nabble.com> Subject: Re: NMS SSL Client Settings MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_12627_9530297.1391986103537" X-Virus-Checked: Checked by ClamAV on apache.org ------=_Part_12627_9530297.1391986103537 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Are you looking for howto info? To make server cert checking work, the client must trust the server's cert. That means either get a server (broker) cert signed by a known trusted Certificate Authority (CA) or add the CA that did sign the cert to the client's trusted CA list. Sent from my iPhone > On Feb 9, 2014, at 3:38 PM, "pwalter [via ActiveMQ]" wrote: > > > From article by Tim Bish I was able to use the following client config settings: > ssl://localhost:61617?transport.acceptInvalidBrokerCert=true > > Currently it won't work without the transport setting.. > I need to make this more secure (i.e. not accept invalid Broker) > > Thanks > > If you reply to this email, your message will be added to the discussion below: > http://activemq.2283324.n4.nabble.com/NMS-SSL-Client-Settings-tp4677667.html > To start a new topic under ActiveMQ - User, email ml-node+s2283324n2341805h3@n4.nabble.com > To unsubscribe from ActiveMQ - User, click here. > NAML -- View this message in context: http://activemq.2283324.n4.nabble.com/NMS-SSL-Client-Settings-tp4677667p4677668.html Sent from the ActiveMQ - User mailing list archive at Nabble.com. ------=_Part_12627_9530297.1391986103537--