Implementing client-side certificates

In case the RabbitMQ broker and client communicate through the Internet, it sounds reasonable that only authorized clients can connect to the broker.

This is the scope of typical user password authentication, but by using, in addition, client-side certificates, the security of the distributed application is highly improved. It also avoids the possibility of MITM attack.

This recipe is the extension/prosecution of the previous one. So, we assume that we already have the CA set up and the server configured, as shown previously.

Getting ready

This recipe is just an extension of the previous one—the same recommendations apply.

How to do it…

Perform the following steps for the client to be able to connect to the RabbitMQ ...

Get RabbitMQ Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

RabbitMQ Cookbook by Gabriele Santomaggio, Sigismondo Boschi

Implementing client-side certificates

Getting ready

How to do it…

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly