Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-6471

update tutorial/configure-ssl

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Duplicate
    • Icon: Major - P3 Major - P3
    • None
    • None
    • None
    • None

    Description

      Per Ricardo:

      For example, according to RFC 6125, hostname verification should be done against the certificate’s subjectAlternativeName’s dNSName field and not the CN (https://tools.ietf.org/html/rfc6125#section-1.5). it is possible to add the proper extensions using the OpenSSL commands and configuration.

      Additionally, we should show the proper OpenSSL commands for making a certificate request and sign it using a CA or an intermediate authority instead of a self-sign certificate which is not a common practice for enterprise deployments.

      Attachments

        Activity

          People

            kay.kim@mongodb.com Kay Kim (Inactive)
            kay.kim@mongodb.com Kay Kim (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              5 years, 28 weeks, 5 days ago