Versions Compared

Old Version 8

changes.mady.by.user Admin

Saved on

compared with

New Version Current

changes.mady.by.user Admin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents
maxLevel3

Info
Lamaxu version versions greater than 1.0.5.9 is are required in order to use SSL Connections to the MQ queue manager.

...

Example, http://localhost:8085/admin/dashboard/#/mq/admin (the default username and password is admin/password)

Navigate to the 'Queue Managers' tab and enter the required Cipher Suite into the Cipher input box. Note the Cipher Suite used needs to match the Cipher Spec on the MQ channel.

Image Removed

Compatible Cipher Suites

SSL/TLS CipherSpecs and CipherSuites in IBM MQ classes for Java

Info

Depending on your MQ versions, the additional Java option below may be required to use other Cipher Suites.

-Dcom.ibm.mq.cfg.useIBMCipherMappings=false

Image Added

To Import a Trust Certificate

...

Where mycert.txt is is your trust certificate.NOTE:

Info
The default password for the truststore.jks file is 'changeit'

Recommended CipherSpecs and Equivalent CipherSuites 

https://www.ibm.com/support/knowledgecenter/en/SSFKSJ_8.0.0/com.ibm.mq.dev.doc/q113210_.htm 

MQ CipherSpec
Equivalent CipherSuite (Oracle JRE)
Protocol
TLS_RSA_WITH_AES_128_CBC_SHATLS_RSA_WITH_AES_128_CBC_SHATLS v1
TLS_RSA_WITH_AES_128_CBC_SHA256TLS_RSA_WITH_AES_128_CBC_SHA256TLS v1.2
TLS_RSA_WITH_AES_256_CBC_SHATLS_RSA_WITH_AES_256_CBC_SHATLS v1
TLS_RSA_WITH_AES_256_CBC_SHA256TLS_RSA_WITH_AES_256_CBC_SHA256TLS v1.2

Defining a Private Keystore for Mutual SSL 

Include Page
Mutual SSL Authentication
Mutual SSL Authentication