SeriveMix中的MQ不够安全

今天首次体验了一下ServiceMix3.2.2,但感觉默认设置时,MQ不够安全,因为所有的机器都可以访问该MQ;
于是我打算通过JAAS配置下MQ,如:
<amq:jaasAuthenticationPlugin configuration="servicemix-domain" />
  <amq:authorizationPlugin>
    <amq:map>
      <amq:authorizationMap>
        <amq:authorizationEntries>
<amq:authorizationEntry queue=">" read="admin" write="admin" admin="admin" />
<amq:authorizationEntry topic=">" read="admin" write="admin" admin="admin" />
        </amq:authorizationEntries>
      </amq:authorizationMap>
  </amq:map>
</amq:authorizationPlugin>
在login.properties加入
servicemix-domain {
    org.apache.servicemix.jbi.security.login.PropertiesLoginModule
        sufficient debug=true
        org.apache.servicemix.security.properties.user="users-passwords.properties"
        org.apache.servicemix.security.properties.group="groups.properties";

    org.apache.servicemix.jbi.security.login.CertificatesLoginModule
        sufficient
        org.apache.servicemix.security.certificates.user="users-credentials.properties"
        org.apache.servicemix.security.certificates.group="groups.properties";

};

这时问题出来了,SeriveMix启动时,自身却连不上MQ了,java.lang.SecurityException: User smx is not authorized to create: topic://ActiveMQ.Advisory.Connection

难道SeriveMix的MQ配置文件不能进行安全配置

你可能感兴趣的:(apache,activemq,Security)