Hi all
I am working with vRO 7.0.1.3533702, which has AMQP Plugin 1.0.4 installed by default.
I am connecting to a RabbitMQ 3.6.2 server installed on RHEL6.7.
I have configured RabbitMQ to use TLSv1.2 and TLSv1.1 in the "rabbitmq.config" file.
[ {ssl, [ {versions,['tlsv1.2', 'tlsv1.1']} ] }, {rabbit, [ {tcp_listeners, []}, {ssl_listeners, [5671]}, {ssl_options, [ {cacertfile,"/cert/cacert.pem"}, {certfile,"/cert/cert.pem"}, {keyfile,"/cert/key.pem"}, {verify,verify_peer}, {fail_if_no_peer_cert,false}, {versions, ['tlsv1.2', 'tlsv1.1']}, {ciphers, ["ECDHE-RSA-AES256-SHA","ECDHE-ECDSA-AES256-SHA"]} ] } ] }, {rabbitmq_management, [ {listener, [ {port, 15671}, {ssl, true}, {ssl_opts, [ {cacertfile, "/cert/cacert.pem"}, {certfile, "/cert/cert.pem"}, {keyfile, "/cert/key.pem"} ] } ] } ] }
].
When I try run the "Declare an Exchange", I receive an exception of:
javax.net.ssl.SSLException: Received fatal alert: protocol_version
If I edit my "rabbitmq.config" file to include "tlsv1", it works.
So even though that vRO 7.0.1 should only allow TLSv1.2 and TLSv1.1 according to the Release Notes: vRealize Orchestrator 7.0.1 Release Notes
The AMQP Plugin uses TLSv1.
Does anybody know if it is possible to change this for the AMQP Plugin 1.0.4 on vRO 7.0.1?