准备证书
- ca证书
- server证书
- 私钥
阿里云中下载pfx证书。使用如下方式转化成Rabbitmq需要配置的证书:
提取ca证书:
openssl pkcs12 -in www.xxxx.com.pfx -nodes -password pass:域名证书密码 -nokeys -cacerts -out cacert.pem
提取server证书:
openssl pkcs12 -in 4000000_www.xxxx.com.pfx -nodes -password pass:域名证书密码 -nokeys -clcerts -out cert.pem
提取私钥(密码:域名证书密码)
openssl pkcs12 -in 4000000_www.xxxx.com.pfx -nodes -password pass:域名证书密码 -passout pass:域名证书密码 -nocerts -out private_key.pem
编写配置文件
参考该链接:TLS (WSS)
# /etc/rabbitmq/rabbitmq.conf
web_mqtt.ssl.port = 15676
web_mqtt.ssl.cacertfile = /path/to/ca_certificate.pem
web_mqtt.ssl.certfile = /path/to/server_certificate.pem
web_mqtt.ssl.keyfile = /path/to/server_key.pem