Nirvana Deployment Guide - Client Security

Introduction

Nirvana makes use of JSSE for SSL enabled communication. Clients are able to connect using standard sockets (nsp), http (nhp), SSL enabled sockets (nsps) or https (nhps). Nirvana's client SSL communication uses the JVM's own SSL implementation.

Clients connecting using SSL will connect to a realm server that has an SSL enabled interface with either client authentication on or off. For more information on client SSL, please click here.

Once authenticated using SSL, the client must have the desired permissions on the realm and its objects in order to perform the operations required. The entitlements are defined within the ACLs for the realm, channels, queues and services. The ACLs must contain the correct level of permissions for clients connecting to the realm.

For more information on realm security, please click here.