Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-14511

Check Extended Key Usage in mongod SSL certificate on startup

XMLWordPrintableJSON

    • Type: Icon: New Feature New Feature
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: 2.4.5, 2.6.3
    • Component/s: Security
    • None
    • Server Security

      If Extended Key Usage is specified, it should contain both "TLS Web Server Authentication" and "TLS Client Server Authentication", because the same cert is being used for creating and accepting internal connections in between the RS members.

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            alex.komyagin@mongodb.com Alexander Komyagin (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated: