Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Provide a plugin for JMXMP support with jmx.remote.profiles = TLS SASL/PLAIN #162

Open
vroyer opened this issue Oct 10, 2019 · 4 comments
Open
Labels

Comments

@vroyer
Copy link

@vroyer vroyer commented Oct 10, 2019

JMX over RMI over k8s port-forwarding is not possible.
JMX over TCP with JMXMP is fine, but you need to manually add the jmxremote_optional.jar and VisualVM does allow to configure a jmx.remote.profiles to support TLS SASL plain text authentication.

Describe the solution you'd like
A JMXMP plugin with the jmxremote_optional jar could add the jmx.remote.profiles=TLS SASL/PLAIN in the env to properly connect to a JVM over TLS with authentication. See oracle doc for client JMXMP connection with TLS+SASL plain text authentication.

Describe alternatives you've considered
It currently works with no TLS and no authentication, but it's no suitable in a production environnement of JVM running in Kubernetes.

Additional context
See this blog

@thurka

This comment has been minimized.

Copy link
Member

@thurka thurka commented Oct 31, 2019

Thanks for enhancement. Indeed JMX over TCP should be supported by VisualVM.

@thurka

This comment has been minimized.

Copy link
Member

@thurka thurka commented Oct 31, 2019

Unfortunately it looks like JMXMP is not actively developed. :-( Where is the latest version and how old it is?

@vroyer

This comment has been minimized.

Copy link
Author

@vroyer vroyer commented Oct 31, 2019

@jmborer

This comment has been minimized.

Copy link

@jmborer jmborer commented Nov 19, 2019

I have such a plugin if you are interested

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
3 participants
You can’t perform that action at this time.