You upgraded your platform, including Ops Manager, TAS tile, 3and RabbitMQ.

Product versions:

• Ops Manager 2.10
• TAS for VMs 2.11.3
• RabbitMQ 2.0.4

After the upgrade they discovered that clients can't connect to RabbitMQ over 5671. We verified 5671 is not listening on RabbitMQ nodes. 

Product Version: 2.0

Customer imported custom configuration in the rabbitmq advanced configuration field. This overwrote the SSL options (keys, etc.) in the new tile. Config was decoded, edited to remove SSL options / listener settings, imported, and changes applied.

1. Copy advanced config from tile.

2. Paste into file in a Linux environment.

cat file | base64 -d > new_file

3. Edit new_file to remove references to SSL options and listeners.

4. Encode new config:

cat new_file | base64 -e > new_file_encoded

5. Remove \r\n (end-of-line characters) so that whole config is a single line.

6, Copy contents of new_file_encoded, paste into advanced options for RabbitMQ tile.

7. Run Apply Changes.

The following is an example of a custom config. For this procedure, while editing the config we removed lines 7-10, starting with the line "{ssl_listeners, [5671]},".

1. [
2.  {rabbit,
3.   [
4.  {disk_free_limit, "1GB"},
5.  {vm_memory_high_watermark, 0.5},
6.  {background_gc_enabled, true},
7.  {ssl_listeners, [5671]},
8.  {ssl_options, [   {depth, 5}, 
9.                    {verify,verify_peer},
10.                    {fail_if_no_peer_cert,false}]},
11.  {auth_mechanisms, ['PLAIN','EXTERNAL']},
12.  {auth_backends, [rabbit_auth_backend_internal, {rabbit_auth_backend_ldap, rabbit_auth_backend_internal}]},
13.  {ssl_cert_login_from, common_name}
14.   ]}, 
15.  {rabbitmq_auth_backend_ldap,
16.   [
17.       {servers, ["ldap.example.com"]},
18.       {use_ssl, true},
19.       {port, 636},
20.       {timeout, 15000},
21.       {log, network},
22.       {dn_lookup_attribute,   "userPrincipalName"},
23.       {dn_lookup_base,  "DC=us,DC=global,DC=example,DC=com"}
24.    ]}  
25. ].