Certificates for RabbitMQ - Genetec Mission Control™ 2.13.3.0

Genetec Mission Control™ Deployment Guide 2.13.3.0

series
Genetec Mission Control™ 2.13.3.0
revised_modified
2020-07-15

The Genetec Mission Control™ installer comes with self-signed certificates for use with RabbitMQ.

RabbitMQ configuration file

By default, RabbitMQ uses the self-signed certificates packaged with the Genetec Mission Control™ installer. The certificate details can be found in C:\ProgramData\Genetec\RabbitMQ\config\RabbitMQ.conf:

## HTTPS listener settings.
## See https://rabbitmq.com/management.html and https://rabbitmq.com/ssl.html for details.
##
 management.ssl.port       = 15671
 management.ssl.cacertfile = C:/Program Files (x86)/Genetec/RabbitMQ/CACert.pem
 management.ssl.certfile   = C:/Program Files (x86)/Genetec/RabbitMQ/Cert.pem
 management.ssl.keyfile    = C:/Program Files (x86)/Genetec/RabbitMQ/Key.pem
 management.ssl.honor_cipher_order   = true
 management.ssl.honor_ecc_order      = true
 management.ssl.client_renegotiation = false
 management.ssl.secure_renegotiate   = true

## Supported TLS versions
 management.ssl.versions.1 = tlsv1.2

## Cipher suites the server is allowed to use
 management.ssl.ciphers.1  = ECDHE-ECDSA-AES256-GCM-SHA384
 management.ssl.ciphers.2  = ECDHE-RSA-AES256-GCM-SHA384
 management.ssl.ciphers.3  = ECDH-ECDSA-AES256-GCM-SHA384
 management.ssl.ciphers.4  = ECDH-RSA-AES256-GCM-SHA384
 management.ssl.ciphers.5  = DHE-RSA-AES256-GCM-SHA384
 management.ssl.ciphers.6  = DHE-DSS-AES256-GCM-SHA384
 management.ssl.ciphers.7  = ECDHE-ECDSA-AES128-GCM-SHA256
 management.ssl.ciphers.8  = ECDHE-RSA-AES128-GCM-SHA256
 management.ssl.ciphers.9  = ECDH-ECDSA-AES128-GCM-SHA256
 management.ssl.ciphers.10 = ECDH-RSA-AES128-GCM-SHA256
 management.ssl.ciphers.11 = DHE-RSA-AES128-GCM-SHA256
 management.ssl.ciphers.12 = DHE-DSS-AES128-GCM-SHA256