I have been trying to configure Geronimo to resolve some security issues. Our security policy requires that SSL ports use ciphers of at least 128 bits and that self-signed certificates are not allowed. I have secured the TomcatWebSLLConnector port per requirements, but I am now encountering issues with getting the OpenEJB ORB SSL port (port 2001) secured. I can't find how to change the port number for the OpenEJB ORB Adapter, but not any way to configure ciphers or certificates on that port.
We are using Geronimo 2.1.2 and IBM Java 5. Is it possible to secure the OpenEJB ORB adapter in Geronimo 2.1.2 or in any newer versions? Janet Hamilton IBM Global Services 40 Lake Park Drive Piscataway, NJ 08854 IBM Notes: Janet Hamilton/Piscataway/IBM Internet Address: [email protected] Voice/Fax: 720-396-6245 Tie-Line: 938-6245
