I'm afraid that there are no detailed configuration options for TLS/SSL in the C++ broker. You cannot configure the enabled / disabled cipher suites, protocols and stuff like that.
J. On Thu, Feb 2, 2017 at 9:40 PM, <[email protected]> wrote: > Looking for a way to set the SSL/TLS transport options on the broker, not > the client (I'm assuming it's the C++ broker as it's whatever Red Hat ships > with (/usr/sbin/qpidd)). > The client allows for this under SSL transport options ( > https://qpid.apache.org/releases/qpid-jms-0.3.0/docs/index.html) but the > broker configuration is strangely quite on this point ( > https://qpid.apache.org/releases/qpid-0.30/cpp-broker/ > book/chap-Messaging_User_Guide-Security.html#sect- > Messaging_User_Guide-Security-Encryption_using_SSL) .. the entire > "security" section is about authorization but absolutely nothing on the > encryption portion itself other than "we use SSL and it's better than > SASL. Set require-ecryption=yes". > Thanks, > -Peter
