[DOCS-12321] Document new TLS version logging configuration options Created: 04/Jan/19  Updated: 30/Oct/23  Resolved: 08/Oct/21

Status: Closed
Project: Documentation
Component/s: manual, Server
Affects Version/s: None
Fix Version/s: Server_Docs_20231030

Type: Improvement Priority: Major - P3
Reporter: Spencer Brown Assignee: Jeffrey Allen
Resolution: Fixed Votes: 0
Labels: docs-configuration
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Documented
Participants:
Days since reply: 2 years, 17 weeks, 5 days ago
Epic Link: DOCSP-11701
Story Points: 3

 Description   

Description

SERVER-36250 added support in versions 3.6.9, 4.0.4, and 3.4.19 for a new configuration option. The option tells mongod and mongos to log a message when a client connects using specific versions of TLS. This should be documented as a configuration option.

Here's an example which will log connections using TLS versions 1.0 or 1.1:

 
net:
  tls:
    logVersions: "TLS1_0,TLS1_1"

Scope of changes

Update docs to include new configuration file option

backport with notes about specific fix version where introduced.

 



 Comments   
Comment by Githook User [ 08/Oct/21 ]

Author:

{'name': 'Jeff Allen', 'email': 'jeffrey.allen@10gen.com', 'username': 'jeff-allen-mongo'}

Message: (DOCS-12321): Document new TLS version logging configuration option
Branch: v4.0
https://github.com/mongodb/docs/commit/b7f1dd58c685dfb21e58d39ab4aed1b1ea2d6105

Comment by Githook User [ 08/Oct/21 ]

Author:

{'name': 'Jeff Allen', 'email': 'jeffrey.allen@10gen.com', 'username': 'jeff-allen-mongo'}

Message: (DOCS-12321): Document new TLS version logging configuration option
Branch: v4.2
https://github.com/mongodb/docs/commit/a55592464e7f132d389277c571f96ebce33abe8e

Comment by Githook User [ 08/Oct/21 ]

Author:

{'name': 'Jeff Allen', 'email': 'jeffrey.allen@10gen.com', 'username': 'jeff-allen-mongo'}

Message: (DOCS-12321): Document new TLS version logging configuration option
Branch: v4.4
https://github.com/mongodb/docs/commit/1ae1b5337ac2b7758f855b6f3af33d8e4cb2dfea

Comment by Githook User [ 08/Oct/21 ]

Author:

{'name': 'Jeff Allen', 'email': 'jeffrey.allen@10gen.com', 'username': 'jeff-allen-mongo'}

Message: (DOCS-12321): Document new TLS version logging configuration option
Branch: v5.0
https://github.com/mongodb/docs/commit/2e8e9d59f09eb356a6f41f28b2315cd82e3d0673

Comment by Githook User [ 08/Oct/21 ]

Author:

{'name': 'Jeff Allen', 'email': 'jeffrey.allen@10gen.com', 'username': 'jeff-allen-mongo'}

Message: (DOCS-12321): Document new TLS version logging configuration option
Branch: master
https://github.com/mongodb/docs/commit/36a0fd5862d94b7ac9afa5d11f4a60e8fda01324

Comment by Spencer Brown [ 06/Oct/20 ]

on 3.6, the option is in net.tls, even though 3.6 uses net.ssl for everything else. Also the command line option is --tlsLogVersions "list", again even though everything else is --sslTheOption.

Generated at Thu Feb 08 08:04:57 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.