I am setting up my application on Weblogic 12c where I need to setup different 2 MDBs which listen to 2 different remote server queues (based on MQ) – each with their own different SSL certificate keystores. I am using MDB + MQ Resource adapter for this. I went ahead and combined the two keystores and set it up on my server by passing it as a JVM argument, but I am able to connect to only one of the remote server queue(lets call it #1), whereas getting security authentication MQ exception (‘MQRC_NOT_AUTHORIZED’) for the other(lets call it #2).

Talking more about the combined KS I created, they both use same certificates individually, with the exception that for #2’s connections, it is required to have the following set for its user authentiaction : OU=WMQCLIENT(m20238p) and in #1, our user is OU=WMQCLIENT(m20238). Notice the additional ‘p’ in #2?

The aliases which contain the different values as described above are defined in my KS under different names. I suspect that it is only using one of these(#1), and not both, which is why I am getting an authentication error for #2’s side.

I wish to dynamically provide my MDB listening to the #2 queue its keystore/alias values, is there a way to achieve this? Any help would be greatly appreciated.