Configuring SSL for JMX Agent External Communications

You can configure the JMX Agent to use the Secure Sockets Layer (SSL) protocol for any connections outside of vFabric GemFire. To do so, you specify the following properties in the Agent’s properties file or as a list of prop=value pairs on the agent command line.

Note: These settings may reflect the same values as the SSL settings listed inAdmin Distributed System Properties. The agent properties listed in that section configure the SSL protocol for communication between GemFire system members. See also SSL for more information on using SSL within GemFire.
Argument Comment Default Value

agent-ssl-enabled

Indicates whether the JMX Agent uses the Secure Sockets Layer (SSL) protocol for communication outside of GemFire.

false

agent-ssl-protocols

A space-separated list of the valid SSL protocols for this connection. You can specify any to use any protocol that is enabled by default in the configured Java Secure Sockets Extension (JSSE) provider.

any

agent-ssl-ciphers

A space-separated list of the valid SSL ciphers for this connection. You can specify any to use any of the ciphers that are enabled by default in the configured JSSE provider.

any

agent-ssl-require-authentication

If true, require client authentication for RMI and other non-HTTP connectors/adaptors.

true

http-ssl-require-authentication If true, require client authentication for HTTP adaptors. false