Bug 1370498

Summary: Incorrect examples in Troubleshooting SSL Problems
Product: [JBoss] JBoss Operations Network Reporter: Filip Brychta <fbrychta>
Component: DocumentationAssignee: Scott Mumford <smumford>
Status: CLOSED CURRENTRELEASE QA Contact: Filip Brychta <fbrychta>
Severity: medium Docs Contact:
Priority: medium    
Version: JON 3.3.6CC: fbrychta
Target Milestone: GAKeywords: Triaged
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-09-05 04:15:53 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Filip Brychta 2016-08-26 13:30:19 UTC 
Document URL: 
https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Operations_Network/3.3/html/Admin_and_Config/ssl-troubleshooting.html

Section Number and Name: 
4.3.3. Example SSL Configuration

Describe the issue: 
Example 4.3. Encryption and Client Authentication: Server (sslservlet) and Agent (sslsocket)
Agent config is missing following:
<entry key="rhq.communications.connector.security.client-auth-mode"       value="need" />
<entry key="rhq.agent.client.security.server-auth-mode-enabled" value="true" />

Example 4.4. Encryption and Client Authentication: Server (sslsocket) and Agent (sslsocket)
Agent config is missing following:
<entry key="rhq.communications.connector.security.client-auth-mode"       value="need" />
<entry key="rhq.agent.client.security.server-auth-mode-enabled" value="true" />

Server config is incorrect:
instead of rhq.communications.connector.security.client-auth-mode=true should be rhq.communications.connector.security.client-auth-mode=need


Additional information: 
In addition there should be a note common for all examples showing Client Authentication that examples show just minimal configuration which is using default keystore and truststore. User will have to update keystore and trustore properties as well to use his own stores.