[SERVER-35153] TLS/SSL configuration without CA Created: 22/May/18 Updated: 23/Jun/18 Resolved: 23/Jun/18 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 3.6.5 |
| Fix Version/s: | None |
| Type: | Question | Priority: | Trivial - P5 |
| Reporter: | Serkan Sahin | Assignee: | Matt Broadstone |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Participants: |
| Description |
|
Hello, I bootstrapped a Mongo 3.6 server on Centos 7 and I'd like to use encryption in order to secure the communications between the server and my Node.JS clients. My server and the clients are all behind the same VPC, i want to make it very simple. I've followed the documentation about the encryption (see: https://docs.mongodb.com/manual/tutorial/configure-ssl/). And I'm using the setting below in my /etc/mongod.conf
Well, the server starts correctly and I can log in to it using a GUI client (Studio 3T) but when my apps cannot. They get "SSLHandshake failed" error. I use this connection string uri: mongodb://username:password@host:27017/database?ssl=true&authSource=admin&ssl_ca_certs=/etc/ssl/certs/ca-bundle.crt if you could give me some hints it would great, thank you!
|
| Comments |
| Comment by Matt Broadstone [ 23/Jun/18 ] |
|
ian.whalen Yes, I've provided all the info that should be necessary to resolve this issue. Looks like it has "Gone Away" |
| Comment by Matt Broadstone [ 04/Jun/18 ] |
|
Hi serkan.sahin@bearingpoint.com, The node driver is configured differently for ssl. You can read more about this here, but specifically you will want to read the CRT file into memory and pass it in via the MongoClient constructor. Please let us know if you need additional help! |