Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Done
Priority: Major - P3
Fix Version/s: Server_Docs_20231030
Affects Version/s: None
Component/s: manual, Server
Labels:
None

Epic Link:
DOCSP-1769
Story Points:
1

https://docs.mongodb.org/manual/reference/configuration-options/#net.ssl.mode

I am not completely sure whether I don't understand the following paragraph or if it should be the other way around:

If the client presents a certificate and the mongos or mongod has net.ssl.allowConnectionsWithoutCertificates enabled, the mongos or mongod will validate the certificate using the root certificate chain specified by CAFile and reject clients with invalid certificates.

I would have expected that if allowConnectionsWithoutCertificates is enabled it would accept connections without a valid certificate, and not the other way around. Or does this mean that if this is enabled and a certificate is given by the connection, then it has to be a valid certificate but connections without a certificate would be accepted as well?

Assignee:: Kay Kim (Inactive)

Reporter:: Kai Orend

Participants:: Githook User, Kai Orend, Kay Kim

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: Mar 23 2016 08:26:23 AM UTC

Updated:: Oct 30 2023 09:34:37 PM UTC

Resolved:: Oct 17 2018 06:12:58 PM UTC

Days since reply:: 5 years, 27 weeks, 1 day ago

Details

Description

Attachments

Activity

People

Dates