Thanks Justin.

Could you please answer my second question:

Also, from the SO post I am guessing that in this case all the new connections 
would start using new cert, while existing connections would continue using old 
cert. Is that correct?


Umesh
________________________________
From: Justin Bertram <jbert...@apache.org>
Sent: Tuesday, February 7, 2023 9:34:08 AM
To: users@activemq.apache.org <users@activemq.apache.org>
Subject: Re: EXTERNAL- Re: ActiveMQ classic: Reload SSL keystore without 
restarting the broker

To my knowledge there are no plans to implement this functionality. I
certainly don't have any plans to do it. Given that, I can't really comment
on how the potential implementation would function.

Of course, one of the great things about Open Source is that anybody can
submit a PR for this functionality.


Justin

On Mon, Feb 6, 2023 at 9:39 PM Umesh Kudale <ukud...@egain.com.invalid>
wrote:

> Hi Justin,
>
> Is there any plan to patch activemq to support runtime reload of SSL
> keystore?
>
> Also, from the SO post I am guessing that in this case all the new
> connections would start using new cert, while existing connections would
> continue using old cert. Is that correct?
>
>
> Umesh
> ________________________________
> From: Justin Bertram <jbert...@apache.org>
> Sent: Monday, February 6, 2023 8:15:32 PM
> To: users@activemq.apache.org <users@activemq.apache.org>
> Subject: EXTERNAL- Re: ActiveMQ classic: Reload SSL keystore without
> restarting the broker
>
>
> CAUTION: This email originated from outside eGain. Do not click links or
> open attachments unless you can verify the sender and know the content is
> safe.
>
>
> As far as I'm aware this isn't possible in ActiveMQ "Classic." The general
> recommendation is to restart the broker. Read more here [1].
>
>
> Justin
>
> [1]
>
> https://stackoverflow.com/questions/54671347/activemq-ssl-reload-truststore-with-out-restart-broker
>
> On Mon, Feb 6, 2023 at 8:19 AM Umesh Kudale <ukud...@egain.com.invalid>
> wrote:
>
> > Hi,
> >
> > I am using activemq 5.17.1 with SSL configured as per instructions given
> > into this page: https://activemq.apache.org/how-do-i-use-ssl. Whenever
> > the certificate/key in the SSL keystore is changed, I want to reload it
> > into activemq broker without restarting the broker. I think we can do it
> in
> > activemq artemis by reloading the configurations but didn't find any way
> to
> > do so in activemq classic. Could anyone please help me here?
> >
> > Note that I am using activemq in standalone mode (NOT embedded), so all
> > the SSL configurations are present in conf/activemq.xml.
> >
> > Thanks in advance,
> > Umesh.
> >
> >
>

Reply via email to