Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-15170

Mention that AA uses both server PEM and agent PEM if cluster auth mode is X509

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Minor - P4 Minor - P4
    • None
    • 4.4.5
    • None
    • None

    Description

      If the Cluster Auth Mode (internal authentication mode) is set to X509. In addition to connecting using the agent PEM configured in the Ops Manager web UI, Automation Agent will all establish connections using the internal auth configuration, i.e. connecting using the server PEM. This results warning message "Client connecting with server's own TLS certificate" in mongod log files. This might confuse security admins as they may not expect the such connections.

      Hence I'd suggest this mentioned in the documentation (perhaps https://docs.opsmanager.mongodb.com/current/tutorial/enable-x509-authentication-for-group/) to avoid confusion.

      Attachments

        Activity

          People

            james.sanchez@mongodb.com James Sanchez (Inactive)
            lungang.fang@mongodb.com Lungang Fang
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              1 year, 45 weeks ago