Configuring SSL of a RocketMQ Instance
Scenario
You can access a RocketMQ instance in plaintext or ciphertext. This section describes how to change the access mode on the console.
RocketMQ instances support the following access modes:
- SSL: Ciphertext access with high security, but lower performance.
- PLAINTEXT: Plaintext access with high performance, but lower security.
- PERMISSIVE: Both ciphertext and plaintext access, depending on the client.
Operation Impact
Table 1 lists the impact of changing the access mode.
The access mode cannot be changed for some existing RocketMQ instances. For details, see the console.
| Server Access Mode Change | Impact |
|---|---|
| PLAINTEXT > SSL | Services will be interrupted. Change the access mode on the client. |
| SSL > PLAINTEXT | |
| PLAINTEXT > PERMISSIVE | Connections will be disrupted and need reconnecting. This may affect services temporarily |
| SSL > PERMISSIVE | |
| PERMISSIVE > PLAINTEXT |
|
| PERMISSIVE > SSL |
|
Prerequisite
You can change the access mode of a RocketMQ instance only when the instance is in the Running state.
Procedure
- Log in to the RocketMQ console.
- Click a RocketMQ instance name to go to the instance overview page.
- In the Connection area, specify SSL option. The Confirm dialog box is displayed.
- Click OK. The Background Tasks page is displayed.
If the SSL change task is in the Successful state, the instance access mode is changed successfully.
Related Documents
- To set SSL to PLAINTEXT or PERMISSIVE and access RocketMQ on a client for message production and consumption, see Accessing RocketMQ on a Client (Without SSL).
- To set SSL to SSL or PERMISSIVE and access RocketMQ on a client for message production and consumption, see Accessing RocketMQ on a Client (With SSL).
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.