[COMPASS-3369] Compass should release an Enforced Security Edition Created: 02/Jan/19 Updated: 24/Sep/19 Resolved: 24/Sep/19 |
|
| Status: | Closed |
| Project: | Compass |
| Component/s: | Compass |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | New Feature | Priority: | Minor - P4 |
| Reporter: | Jack Alder | Assignee: | Unassigned |
| Resolution: | Won't Fix | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Description |
|
Compass currently allows users to select SSL: Unvalidated. While the connectivity to a MongoDB service with requireSSL is required to be encrypted, the end user may choose to not validate the provided certificate. Compass should package a release edition for security enforced environments/networks. The SSL: Unvalidated option should be removed, possibly the SSL: None option as well. |