WAS v8.5 > Secure applications > Secure Service integration > Secure service integration > Enable client SSL authentication

Configure a bus to allow client SSL authentication

We can configure a service integration bus to enable connecting client JMS applications to authenticate using SSL certificates.

You must ensure the following tasks have been completed:

To allow connecting JMS application clients to authenticate to the bus using client SSL certificates, define an SSL configuration. There are two parts to this task. First we use the dmgr console to map SSL certificates to entries in the LDAP user registry. Secondly, you create a unique SSL configuration for each endpoint address for which to use client SSL authentication. Do not use the default SSL configuration for the bus.

  1. Use the dmgr console to define certificate filters to map an SSL certificate to an entry in the LDAP server. For more information, see Create an SSL configuration. The client SSL certificate is mapped to a user ID in the user registry.

  2. Create a separate SSL configuration file for each endpoint address for server, bus member or cluster on the bus, and select that client authentication is required. For more information, see Create an SSL configuration


Results

The bus is configured to allow client SSL authentication.

Connect JMS client applications can now authenticate to the bus using client SSL certificates.


+

Search Tips   |   Advanced Search