[DOCS-9358] Comment on: "manual/tutorial/configure-x509-member-authentication.txt" Created: 21/Nov/16  Updated: 30/Oct/23  Resolved: 17/Mar/23

Status: Closed
Project: Documentation
Component/s: manual
Affects Version/s: None
Fix Version/s: Server_Docs_20231030

Type: Task Priority: Major - P3
Reporter: Docs Collector User (Inactive) Assignee: Ravind Kumar (Inactive)
Resolution: Won't Do Votes: 0
Labels: collector-298ba4e7, security, x509
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified
Environment:

all

Location: https://docs.mongodb.com/manual/tutorial/configure-x509-member-authentication/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2840.99 Safari/537.36
Referrer: https://www.google.nl/
Screen Resolution: 1920 x 1080


Participants:
Days since reply: 46 weeks, 6 days ago
Story Points: 1

 Description   

This page contains information that is not clear and contradictuous. It is specifically about the 'extendedKeyUsage' attribute:

If the certificate includes the Extended Key Usage (extendedKeyUsage) setting, the value must include clientAuth (“TLS Web Client Authentication”).
extendedKeyUsage = clientAuth
You can also use a certificate that does not include the Extended Key Usage (EKU).

In the next paragraph it states:
Omit extendedKeyUsage or
Specify extendedKeyUsage values that include clientAuth in addition to serverAuth.

The second statement is VALID (include clientAuth and serverAuth). The first statement is INVALID (include only clientAuth).



 Comments   
Comment by Sarah Olson [ 17/Mar/23 ]

Closing this out on the grounds that:

  • Details of this request are significantly outdated. 
  • Our documentation has evolved substantially since this request was made. 

Based on this, closing as WON'T DO. Please don't hesitate to give me a shout or to reopen if you disagree.

Generated at Thu Feb 08 07:58:11 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.