MQ

MQ

Join this online group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

Setting Certificates for Web and QM on Openshift

  • 1.  Setting Certificates for Web and QM on Openshift

    Posted Wed March 01, 2023 12:42 PM

    Hi,

    i recently deployed an OpenShift cluster with NativeHA using a server.crt and server.key. NativeHA works fine under TLS.

    The deploy install the cert in the containers under /etc/mqm/pki/default.

    Then, to make LDAP works with our internal AD server, i setup a certificate (*.mydomain.com) under /etc/mqm/pki/trust/0 and it works correctly.

    OpenShift create 2 routes:

    web.myqm.domain.com

    qm.myqm.domain.com

    Both console and web seems to be using the "server.crt" used for NAtiveHA.

    where should i place the certs for the webconsole and qm manager route?

    In the end, i want to reach 2 things:

    1. Secure communication with the WebConsole
    2. TLS connection to the queue manager (using cert or LDAP)


    ------------------------------
    Andres Colodrero
    ------------------------------


Related Content