JMX and SSL
Hello,
I am trying to get SSL client side authentication working with JMX. Unfortunately the documentation is bit a vague on this particular issue. Can someone point me in the right direction? I'm not particularly knowledgable about SSL. I don't know if the CN or alias are suppossed to correspond to the JMX login user, for example.
Is it as simple as generating a keystore on each side, and then importing that key as the truststore on the otherside?
-geoff
# 1
hi geoff, I have successfully used SSL and JMX. However, I am using MX4J 3.0.2 ref impl. I am not familiar with SUN JMXRI + SSL, but they use the SSL socket factories in javax.net.ssl package. For using SSL, you need to create a java keystore and certificate. At the console side also, you will need to import that certificate into the list of console keystore. There are ready examples available in Both SUN RI and MX4J that tell you how to do this. If you dont understand, I will provide you with my code.
# 2
Hi Geoff,
You will find lots of pointers from here:
http://blogs.sun.com/jmxetc/entry/troubleshooting_connection_problems_in_jconsole
JDK 6 also has an advanced JMX example that will walk you through the step
needed to start & connect to a JMX agent in a secure mode. The example
is in <JDK_HOME>/sample/jmx/jmx-scandir (look at the index.html
in there for instructions).
(see also: http://blogs.sun.com/jmxetc/entry/an_advanced_jmx_example_for)
Hope this helps,
-- daniel
JMX, SNMP, Java, etc...
http://blogs.sun.com/jmxetc
