Solace Community is getting a facelift!

On March 3rd we will be starting the process of migrating Solace Community to a new platform. As a result, Solace Community will go in to a temporary read-only state. You will still be able to come onto Solace Community and search through posts to find answers, but you won't be able to ask questions, post comments, or react in any way.

We hope to have the migration complete by Wednesday March 5th (or sooner), so please keep an eye out!

How to enable TLS connection in spring boot?

Ali
Ali Member Posts: 3
in PubSub+ Event Broker #1
Hello everyone,
I have successfully integrated queue communication in solace with spring boot but I'm facing an issue.
I want to make it such that any client without a valid certificate (jks) is not allowed to connect even if the credentials are valid.

It seems that the default settings allow anyone with credentials to connect without a certificate.

I tried following the docs and fiddling with the settings (both the java and the solace cloud gui), but nothing seems to work.

Any tips would be greatly appreciated!
Tagged:

Answers

  • marc
    marc Member, Administrator, Moderator, Employee Posts: 973 admin
    #2

    Hi @Ali ,

    Are you wanting clients to authenticate using client certificate authentication or basic authentication (username/password)?

    Either way you should disable the unsecured SMF port (by default 55555) and ensure clients are connecting via the secured SMF port (by default 55443). They will only be able to connect via that port if they have a valid certificate to establish the TLS handshake. On top of that, if you want to only use client certificate auth you can disable basic authentication completely so they can only authenticate via their certificate that must be signed by a certificate authority that your broker trusts.

    Hope that helps!

Categories

This Month's Leaders

This Week's Leaders