1 Reply Latest reply: Mar 2, 2011 6:08 AM by Andrey Kotov RSS

    How to specify truststore file and password in JBoss 6.x?

    Kuntal Mondal Newbie

      Hi All,

      I am using latest JBoss 6.0.0.CR1 build with "default" configuration (in Windows platform).

       

      For user authentication I have to communicate with corporate LDAP server using "ldaps" protocol (secured ldap).

      I have got the required truststore file and password for the ldap server.

       

      Now, I have added following line in {JBOSS_HOME}\bin\run.conf.bat file

      set "JAVA_OPTS=%JAVA_OPTS% -Djavax.net.ssl.trustStore=%JBOSS_HOME%\server\default\conf\server.truststore -Djavax.net.ssl.trustStorePassword=<TRUSTSTORE_PASSWORD>" and I can successfully communicate with the ldap server using secured ldap protocol (i.e. ldaps).

       

      My question is: instead of modifying the "run.conf.bat" file, can I specify the same (or similar) in some configuration file?

      For example I did add following lines in {JBOSS_HOME}server\default\conf\server.xml under "SSL/TLS Connector configuration" block - but it did not work.

       

            <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
            <Connector protocol="HTTP/1.1" SSLEnabled="true"
                 port="${jboss.web.https.port}" address="${jboss.bind.address}"
                 scheme="https" secure="true" clientAuth="false"
                 keystoreFile="${jboss.server.home.dir}/conf/server.keystore"
                 keystorePass="edm-ssl-pass"

                 truststoreFile="${jboss.server.home.dir}/conf/server.truststore"
                  truststorePass="<TRUSTSTORE_PASSWORD>"

                 sslProtocol = "TLS" />

       

      So, does that mean updating "run.conf.bat" file is the only way to communicate with a secured server?

       

      Any suggestion will be appreciated.

       

      Thanks in advance,

      -