Convert X509 authentication SSL/TLS settings to the most secure option when possible

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Won't Do
    • Priority: Major - P3
    • No version
    • Affects Version/s: None
    • Component/s: Connectivity, Security
    • None
    • 2
    • Not Needed

      The current "backward compatible" conversion from connection model to connection info will add insecure options to the connection string.

      When safe and possible we want to convert to a more secure connection string, for example with Atlas we know that we can remove tlsAllowInvalidCertificates=true and tlsAllowInvalidHostnames=true and we do not need a CA and "client private key"

            Assignee:
            Unassigned
            Reporter:
            Maurizio Casimirri
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: