You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@geronimo.apache.org by Janet Hamilton <jj...@us.ibm.com> on 2014/01/30 19:55:06 UTC

Geronimo OpenEJB ORB SSL port security

I have been trying to configure Geronimo to resolve some security issues. 
Our security policy requires that SSL ports use ciphers of at least 128 
bits and that self-signed certificates are not allowed. I have secured the 
TomcatWebSLLConnector port per requirements, but I am now encountering 
issues with getting the OpenEJB ORB SSL port (port 2001) secured. I can't 
find how to change the port number for the OpenEJB ORB Adapter, but not 
any way to configure ciphers or certificates on that port.

We are using Geronimo 2.1.2 and IBM Java 5.

Is it possible to secure the OpenEJB ORB adapter in Geronimo 2.1.2 or in 
any newer versions?

Janet Hamilton
IBM Global Services
40 Lake Park Drive
Piscataway, NJ 08854
IBM Notes: Janet Hamilton/Piscataway/IBM
Internet Address: jjhamilton@us.ibm.com
Voice/Fax: 720-396-6245
Tie-Line: 938-6245