The JMS api does support client authentication via certificates. It only supports user/password, e.g. javax.jms.ConnectionFactory.createConnection(user, password); But you can still do certifcate authentication if you enable SSL at the transport layer that requires client trust. i.e. you require the server to not trust the client unless it provides a valid certificate. Without a valid certificate, it cannot establish the TCP/IP connection. How to do this is explained in the jboss security documentation somewhere. See also the SSL (ServerSocket[Factory]) docs in the main javadocs. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4052606#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...