Guidelines for using JMX securely
Follow these guidelines to securely use your Java Management Extensions (JMX) agent:
-
If you enable JMX for a secure store, your JMX monitoring application must access the store using SSL.
-
You should consult the configuration details for the JMX product you wish to use. In this case, you can use jconsole with a secure store by running the following command:
jconsole -J-Djavax.net.ssl.trustStore=/home/nosql/client.trust \ node01:5000
where node01 is the registry host to be monitored and 5000 is the registry port configured for the Storage Node.
-
If you create the client.trust in PKCS12 format and protected by password, you need to specify the password for client.trust by running the jconsole command:
jconsole -J-Djavax.net.ssl.trustStore=/home/nosql/client.trust \ -J-Djavax.net.ssl.trustStorePassword=<client.trust password> node01:5000