On a second look, it seems like SpringSslContext could not be used with connection factories, but only for broker configuration. You should use the system properties for now and you can raise a Jira enhancement request for this.
Cheers -- Dejan Bosanac Open Source Integration - http://fusesource.com/ ActiveMQ in Action - http://www.manning.com/snyder/ Blog - http://www.nighttale.net On Fri, Jan 9, 2009 at 1:36 PM, nestabur <nesta...@gmail.com> wrote: > > Yes, I'm using that certificates provided by activemq: > > activemq.ssl.trust.store=/WEB-INF/certificates/client.ts > activemq.ssl.trust.pwd=password > activemq.ssl.key.store=/WEB-INF/certificates/client.ks > activemq.ssl.key.pwd=password > > NEStor > > > Dejan Bosanac wrote: > > > > Hi, > > > > it seems like you are trying to use wrong certificates to connect to the > > broker. If you are using default broker certificate, that you should > > reference conf/client.ks and conf/client.ts from your client. > > > > Cheers > > -- > > Dejan Bosanac > > > > Open Source Integration - http://fusesource.com/ > > ActiveMQ in Action - http://www.manning.com/snyder/ > > Blog - http://www.nighttale.net > > > > > > On Thu, Jan 8, 2009 at 12:10 PM, nestabur <nesta...@gmail.com> wrote: > > > >> > >> Hi All, > >> > >> I'm using ActiveMQ 5.2. I want to connect via ssl, I'm using the spring > >> framework and I prefer to set up the ssl client throw configuration > >> beans. > >> > >> Currently I have this config: > >> > >> <!-- ActiveMq configuration --> > >> <bean id="sslContext" > >> class="org.apache.activemq.spring.SpringSslContext"> > >> <property name="keyStore" > >> value="${activemq.ssl.key.store}"></property> > >> <property name="keyStorePassword" > >> value="${activemq.ssl.key.pwd}"></property> > >> <property name="trustStore" > >> value="${activemq.ssl.trust.store}"></property> > >> <property name="trustStorePassword" > >> value="${activemq.ssl.trust.pwd}"></property> > >> </bean> > >> > >> <bean id="jmsFactory" > >> class="org.apache.activemq.pool.PooledConnectionFactory" > >> destroy-method="stop"> > >> <property name="connectionFactory"> > >> <bean > >> class="org.apache.activemq.ActiveMQConnectionFactory"> > >> <property name="brokerURL"> > >> > >> <value>${activemq.triton.url}</value> > >> </property> > >> <property name="userName" > >> value="${activemq.triton.user}"></property> > >> <property name="password" > >> value="${activemq.triton.password}"></property> > >> </bean> > >> </property> > >> </bean> > >> > >> It doesn't work, activeMQ throws that error: > >> ERROR TransportConnector - Could not accept connection : > >> Received fatal alert: certificate_unknown > >> > >> And this one from tomcat: > >> 3738 [task-scheduler-2] INFO Uncategorized exception occured during JMS > >> processing; nested exception is javax.jms.JMSException: Could not > connect > >> to > >> broker URL: ssl://localhost:61617. Reason: > >> javax.net.ssl.SSLHandshakeException: > >> sun.security.validator.ValidatorException: PKIX path building failed: > >> sun.security.provider.certpath.SunCertPathBuilderException: unable to > >> find > >> valid certification path to requested target > >> > >> Does anyone know thow to set it up correctly? > >> > >> Thanks, > >> > >> NEStor > >> -- > >> View this message in context: > >> http://www.nabble.com/Uses-of-SpringSslContext-tp21349895p21349895.html > >> Sent from the ActiveMQ - User mailing list archive at Nabble.com. > >> > >> > > > > > > ----- > > Dejan Bosanac > > > > Open Source Integration - http://fusesource.com/ > > ActiveMQ in Action - http://www.manning.com/snyder/ > > Blog - http://www.nighttale.net > > > > -- > View this message in context: > http://www.nabble.com/Uses-of-SpringSslContext-tp21349895p21371480.html > Sent from the ActiveMQ - User mailing list archive at Nabble.com. > >
