Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-14153

Consider removing the recommendation to use a single CA for X.509

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: manual, Server
    • Labels:

      Description

      Description

      For X509 authentication mechanism we have the following text here:

      For production use, your MongoDB deployment should use valid certificates generated and signed by a single certificate authority.

      We should probably remove it as with SERVER-35418 it is now possible to configure completely unrelated CAs for intra-cluster and for client connections

      Scope of changes

      Impact to Other Docs

      MVP (Work and Date)

      Resources (Scope or Design Docs, Invision, etc.)

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              andrew.feierabend Andrew Feierabend
              Reporter:
              dmitry.ryabtsev Dmitry Ryabtsev
              Participants:
              Last commenter:
              Githook User Githook User
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved:
                Days since reply:
                14 weeks, 6 days ago
                Date of 1st Reply: