Implementation GuideInstalling the Enterprise Management ServerHow to Install the Enterprise Management Server ComponentsEnterprise Management Server SSL Communication › Message Queue Server SSL Port Numbers

Previous Topic: SSL Communication for JBoss

Next Topic: How You Configure CA Access Control Enterprise Management for SSL Communication
Message Queue Server SSL Port Numbers

When you install CA Access Control Enterprise Management, the Message Queue Server is configured with the default SSL communication port numbers. You can modify the port numbers after you installed CA Access Control Enterprise Management, for example, to prevent unauthorized access from well-known ports.

Example: Modifying the Message Queue Server SSL Port Numbers

The following example explains how to modify the Message Queue Server SSL port numbers from the default port numbers.

To modify the Message Queue Server SSL Port Numbers

Note: Stop all the CA Access Control services or daemons before you modify the Message Queue Server settings.

  1. In the CA Access Control Enterprise Management Server, navigate to the following directory: 
    ACServer_InstallDir/AccessControlServer/MessageQueue/tibco/ems/bin
  2. Open the routes.conf file for editing.
  3. Locate the entry [PR_DMS_SERVER] and modify the port number value at the url field. For example: 
    url	= ssl://PR_DMS_SERVER:7777
  4. Open the tibemsd.conf file for editing.
  5. Locate the entry listen ports and modify the port number. For example: 
    listen = ssl://7777
  6. Open the tibcoems-service.xml file for editing.
  7. Locate the section <!-- The JMS provider loader --> and modify the port number at the java.naming.provider.url line. For example: 
    java.naming.provider.url=tibjmsnaming://localhost:7777
  8. Open the factories.conf file for editing.
  9. Locate the following sections: [SSLQueueConnectionFactory], [SSLTopicConnectionFactory], [SSLXAQueueConnectionFactory] and modify the port number at the url field. For example: 
    [SSLQueueConnectionFactory]
  type                     = queue
  url                      = ssl://7777
  ssl_verify_host          = disabled

    [SSLTopicConnectionFactory]
  type                     = topic
  url                      = ssl://7777
  ssl_verify_host          = disabled

    [SSLXAQueueConnectionFactory]
  type                     = xaqueue
  url                      = ssl://7777
  ssl_verify_host          = disabled
  10. Locate the following entry: org.jboss.naming.NamingAlias and modify the port number. For example: 
    tibjmsnaming://localhost:7777
  11. Start the CA Access Control services.

    The Message Queue Server SSL port numbers are now modified as required.