Is it possible to use Certificate Revocation Lists to authenticate clients connecting to an ActiveMQ broker?
I've seen some Java properties that can enable revocation checking (i.e. com.sun.net.ssl.checkRevocation & com.sun.security.enableCRLDP), but when I try to run the ActiveMQ broker with them, I receive a java.security.cert.CertPathValidatorException for no CRL found. I haven't found any additional properties where I can specify a CRL file. Maybe I'm missing something? Also, I saw that you can create a custom security plugin for the ActiveMQ broker (http://activemq.apache.org/security.html). If it turns out that I can't use Java properties for CRL checking, would it be possible to write a JAAS plugin for it? Thank you, - Michael -- View this message in context: http://www.nabble.com/ActiveMQ-and-CRLs-tp14283492s2354p14283492.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.
