asked on

ActiveMQ and Linux

I am using ActiveMQ on Linux (both client and server)

I have asked this question previously, but I need to ask it more specifically.

Using the following web site:

http://activemq.apache.org/how-do-i-use-ssl.html

it suggests using the following names fro the trust store and keystore (client.ks and client.ts)

javax.net.ssl.keyStore=/path/to/client.ks
...
javax.net.ssl.trustStore=/path/to/client.ts

Open in new window

but then it says:

In Linux, do not use absolute path to keystore. By default, keytool uses ~/.keystore, but in some setups passing -Djavax.net.ssl.keyStore=/home/account/.keystore to Java VM does not work.

Open in new window

So what I think they are suggesting is that the .keystore is a direcotry that contains the client.ks and client.ts, as in

/home/client/.keystore/client.ks

Open in new window

and

/home/client/.keystore/client.ts

Open in new window

Is this a correct interpretation of the documentation?

Gerwin Jansen

In general:

a path is a folder structure like /path/folder1/folder2

a pathname is a folder structure including a filename like /path/folder1/folder2/file1.txt

In your case:

~/.keystore - is referring to a path, a folder .keystore relative to the current home (~) folder

The document is talking about using a relative path (~/.keystore) instead of an absolute (/home/account/.keystore) that apparantly is not working in some setups

Anthony Lucia

ASKER

So should I use the following

Should I define the java parameters as:

javax.net.ssl.keyStore=~/client.ks
...
javax.net.ssl.trustStore=~./client.ts

Open in new window

To refer to absolute paths of:

/home/client/client.ks 

/home/client/client.ts

Open in new window

Assuming my client 'lives' at /home/client ?

ASKER CERTIFIED SOLUTION

Gerwin Jansen

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial