Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Done
Priority: Major - P3
Fix Version/s: v1.3.12
Affects Version/s: None
Component/s: manual
Labels:
None
Environment:
http://docs.mongodb.org/manual/tutorial/configure-x509-member-authentication/

It is possible to use a single x509 certificate for both member authentication and x.509 client authentication. To do so, obtain a certificate with both clientAuth and serverAuth (i.e. “TLS Web Client Authentication” and “TLS Web Server Authentication”) specified as Extended Key Usage (EKU) values, or simply do not specify any EKU values. Provide this file as the the --sslPEMKeyFile and omit the --sslClusterFile option described below.

It is very confusing, as it might sound that we encourage to use the same x509 certificate for both client and server authentication.

is related to

DOCS-4572 Clarify extendedKeyUsage needs of server/client SSL certificates

Closed

Assignee:: Sam Kleinman (Inactive)

Reporter:: Alexander Komyagin (Inactive)

Participants:: Alexander Komyagin, Githook User, Kevin Pulo, Sam Kleinman

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: Sep 29 2014 09:05:22 PM UTC

Updated:: Mar 16 2015 11:56:38 PM UTC

Resolved:: Oct 16 2014 02:49:23 PM UTC

Days since reply:: 9 years, 28 weeks, 6 days ago

Details

Description

Attachments

Issue Links

Activity

People

Dates