cancel
Showing results for 
Search instead for 
Did you mean: 

JMS SSL

Former Member
0 Kudos

Hi guys,

I have interfaces between ECC and a Websphere Sibus system.

I would like to connect PI 7.11 to an SSL JMS queue. In non secured mode, it is working fine, but when configuring the SSL queues in my CC it is failing with the following error which is not really helpful :

Error creating JMS connection. The JMS provider gave the error message as CWSIA0241E: An exception was received during the call to the method JmsManagedConnectionFactoryImpl.createConnection: com.ibm.websphere.sib.exception.SIResourceException: CWSIT0006E: It is not possible to connect to bus BUS_SDIN because the following bootstrap servers could not be contacted [xxxxxxxx.fr:14115:BootstrapSecureMessaging] and the following bootstrap servers returned an error condition []. See previous messages for the reason for each bootstrap server failure.. CWSIT0006E: It is not possible to connect to bus BUS_SDIN because the following bootstrap servers could not be contacted [xxxxxxxxxx.fr:14115:BootstrapSecureMessaging] and the following bootstrap servers returned an error condition []. See previous messages for the reason for each bootstrap server failure., and the error code as CWSIA0241.

I have already :

- Checked OSS notes, although it says that secured JMS is not supported by standard JMS libraries, I am using IBM java libraries that are supposed to handle SSL connections.

- Checked this document : [PDF deleted 29 March 2011]

but it is for PI 7.0 and Websphere MQ, not Websphere Sibus

- Searched in the forums, found nothing interessting

- I have tried to put Websphere certificate in ABAP strust, then in java nwa keystores, nothing works

Has anyone already configured JMS SSL and can provide some help/tips ?

Many thanks,

Removed Broken Link. Jason Lax on Mar 29, 2011 2:06 PM

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
0 Kudos

There is no standard way on the JMS adapter to have SSL, since the JMS protocol does not cover this kind of connection. This was created by some specific JMS vendors, and it is not supported by current PI/XI releases.

You can try however to create a custom module processor reading the Key Store API, referring to the links below

For KeyStore API access and code examples:

http://help.sap.com/javadocs/pi/SP3/xpi/com/sap/aii/security/lib/KeyStoreManager.html

http://help.sap.com/saphelp_47x200/helpdata/en/2f/aaa1701494c043830b1945264b2624/content.htm

For module processor development:

http://help.sap.com/saphelp_nw04/helpdata/en/cd/5af7c0c994e24fb0d0088443513de2/content.htm

http://help.sap.com/saphelp_nwpi711/helpdata/en/32/43d84072378031e10000000a1550b0/content.htm

Please also check OSS note #912314 for other solutions.

Edited by: Lucas Santos on Mar 29, 2011 3:01 PM

0 Kudos

Hi!

Unfortunatelly SSL is not supported with JMS.

Regards,

Caio Cagnani