Geronimo OpenEJB ORB SSL port security

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

Geronimo OpenEJB ORB SSL port security

Janet Hamilton
I have been trying to configure Geronimo to resolve some security issues. Our security policy requires that SSL ports use ciphers of at least 128 bits and that self-signed certificates are not allowed. I have secured the TomcatWebSLLConnector port per requirements, but I am now encountering issues with getting the OpenEJB ORB SSL port (port 2001) secured. I can't find how to change the port number for the OpenEJB ORB Adapter, but not any way to configure ciphers or certificates on that port.

We are using Geronimo 2.1.2 and IBM Java 5.

Is it possible to secure the OpenEJB ORB adapter in Geronimo 2.1.2 or in any newer versions?

Janet Hamilton
IBM Global Services
40 Lake Park Drive
Piscataway, NJ 08854
IBM Notes: Janet Hamilton/Piscataway/IBM
Internet Address: [hidden email]
Voice/Fax: 720-396-6245
Tie-Line: 938-6245