[req] Security: MQ Security Requirements Implementation
Closed this issue · 1 comments
- Implement Queue Manager to Queue Manager security (Digital Certs with SSLpeermap)
- Client to Queue Manager Security - Connauth LDAP user authentication
- Client to Queue Manager Security - Digital Certificates with peering (SSLpeermap)
- Client to Queue Manager Security - Channel Security Exit for external internet use (username/pw or other recommendations)
MQIPT TLS has been added
[route]
Name=TLSDRHAQM1
Active=false
ListenerPort=1401
Destination=3bdf30c3-us-east.lb.appdomain.cloud
DestinationPort=1401
SSLServer=true
SSLServerCipherSuites=SSL_RSA_WITH_AES_256_CBC_SHA256
SSLServerKeyRing=/opt/mqipt/installation1/mqipt/samples/ssl/TLS-POC-DB.pfx
SSLServerKeyRingPW=/opt/mqipt/installation1/mqipt/samples/ssl/TLS-POC-DB.pwd
SSLServerDN_O=*
SSLServerDN_CN=*.securedoamin.com
SSLServerAskClientAuth=true
[route]
Name=TLSDRHAQM2
Active=false
ListenerPort=1402
Destination=3bdf30c3-us-east.lb.appdomain.cloud
DestinationPort=1402
SSLServer=true
SSLServerCipherSuites=SSL_RSA_WITH_AES_256_CBC_SHA256
SSLServerKeyRing=/opt/mqipt/installation1/mqipt/samples/ssl/TLS-POC-DB.pfx
SSLServerKeyRingPW=/opt/mqipt/installation1/mqipt/samples/ssl/TLS-POC-DB.pwd
SSLServerDN_O=*
SSLServerDN_CN=*.securedoamin.com
SSLServerAskClientAuth=true