You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/HowTo/Configure/TLS.md
+5-1Lines changed: 5 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -41,7 +41,8 @@ If the value is set to `"OFF"`, the rest of the SSL configuration will not be co
41
41
"knownClientsFile": "[TLS known clients file for the server. This contains the fingerprints of public keys of other nodes that are allowed to connect to this one.]",
42
42
"knownServersFile": "[TLS known servers file for the client. This contains the fingerprints of public keys of other nodes that this node has encountered.]",
43
43
"generateKeyStoreIfNotExisted": "[boolean]",
44
-
"environmentVariablePrefix": "[Prefix to uniquely identify environment variables for this particular server ssl configuration]"
44
+
"environmentVariablePrefix": "[Prefix to uniquely identify environment variables for this particular server ssl configuration]",
45
+
"clientAuth" : "[Configure if SSL needs client authentication - boolean - default is true]"
45
46
}
46
47
}
47
48
```
@@ -59,6 +60,9 @@ These can be defined in multiple ways:
59
60
!!! important
60
61
`.jks` files take precedence over `.pem` files if both are provided for client-side or server-side.
61
62
63
+
!!! tip
64
+
To enable one-way SSL, set `clientAuth` flag to `false`.
0 commit comments