Hi Zack, I did that in the past (using Bean and ActiveMQ with dataflow runner).
I didn't use mutual authentication (I used one way SSL), and disabled verifyHostName on the client side (it's not enabled by default on broker side). I used a self signed key, in case of a chain, you may need to update cacerts or truststore. Regards JB On Wed, Jan 21, 2026 at 1:29 AM Zack Culberson <[email protected]> wrote: > Hi all, > > Has anyone connected to ActiveMq from Dataflow ? We currently are facing > some issues related to certificates. When it tries to connect to our > brokers through ssl we get PKIX path building failed. > sun.security.provider.certpath.SunCertPathBuilderException: unable to find > valid certification path to requested target. Currently in Dataflow I have > a JVMInitializer that will download our truststore.jks file that has the > root and server cert for our broker and store it into the /tmp folder on > the worker. I then use the ActiveMQSslConnectionFactory and set the > truststore location and password within those apis. But it still fails with > the above error. I have added debugging to insure the jks file is > downloaded which it is is there other things I could try or need to do ? > > Thank you, > Zack >
