*error:0906D06C:PEM routines:PEM_read_bio:no start line error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib * appears if a private key is not found during SSL handshake
Overall, looks like you're on a right path... You enabled client auth... Therefore for successful handshake you need to configure keystore (jks file) with broker private key and truststore (jks) with public keys of the clients your broker should trust... On client side, you need the same thing a) keystore (pem file due to CMS requirement) to store client's private key and b)trustore (pem) format to store public key of the broker you trust... So, make sure: a) you use openssl.exe pkcs12 -in *%client%.p12* -out *%client%_ks.pem * to create client keystore b)you use openssl.exe pkcs12 -in %broker%.p12 -out %client%_ts.pem -nokeys And of course, make sure you don't mix it up references to these files when you set it as properties in your CMS-based c++ code. -- View this message in context: http://activemq.2283324.n4.nabble.com/setting-up-c-client-app-using-CMS-using-SSL-client-certificate-auth-tp4664686p4674033.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.