How to configure security of ActiveMQ ?

 

Terms

{activemq.home}: The ActiveMQ installation folder.

How to configure ActiveMQ to use JAAS Authentication?

Enable Jaas Authentication Plugin

Add below configuration into {activemq.home}\conf\activemq.xml, under /beans/broker node.

Please ignore this step, if already there.

		 <plugins>
			 <jaasAuthenticationPlugin xmlns="http://activemq.apache.org/schema/core" configuration="activemq-domain"/>
	     </plugins>

 

Configure activemq-domin

Configure the login required in {activemq.home}\conf\login.config file, please pay attention the domain name should match with the name in the activemq.xml file.

activemq-domain {
    org.apache.activemq.jaas.PropertiesLoginModule required
        org.apache.activemq.jaas.properties.user="users.properties"
        org.apache.activemq.jaas.properties.group="groups.properties";
};

 

Add user

Configure the user and password in {activemq.home}\conf\users.properties.

mqadmin=password
mquser=password

 

Add user group

Configure the user group in {activemq.home}\conf\groups.properties.

admins=mqadmin
users=mquser

Reboot ActiveMQ

Reboot the ActiveMQ server.

 

How to change the default port of ActiveMQ?

Configure the ActiveMQ ports

Go to the element of /beans/broker/transportConnectors, update the ports of below.

<transportConnectors>
	<!-- DOS protection, limit concurrent connections to 1000 and frame size to 100MB -->
	<transportConnector name="openwire" uri="tcp://0.0.0.0:61616?maximumConnections=1000&amp;wireFormat.maxFrameSize=104857600"/>
	<transportConnector name="amqp" uri="amqp://0.0.0.0:5672?maximumConnections=1000&amp;wireFormat.maxFrameSize=104857600"/>
	<transportConnector name="stomp" uri="stomp://0.0.0.0:61613?maximumConnections=1000&amp;wireFormat.maxFrameSize=104857600"/>
	<transportConnector name="mqtt" uri="mqtt://0.0.0.0:1883?maximumConnections=1000&amp;wireFormat.maxFrameSize=104857600"/>
	<transportConnector name="ws" uri="ws://0.0.0.0:61614?maximumConnections=1000&amp;wireFormat.maxFrameSize=104857600"/>
</transportConnectors>

 

How to change the username / password of ActiveMQ Admin Console?

Configure the user name and password

Update the user name , password and roles information in {activemq.home}\conf\jetty-ream.properties. By the format, username: password [,rolename ...]

mqadmin: xckj_mqadmin, admin
mquser: xckj_mquser, user
posted @ 2016-05-28 13:01  bruceHuang  阅读(273)  评论(0编辑  收藏  举报