require_client_auth enforces mutual (two-way) authentication. The default
(require_client_auth: false) is one-way - only the server certificate is
verified. I believe you want to disable SSL authentication altogether, as
Jeff mentioned I think you'd need to make code changes in order to do that.
I see require_client_auth in the internode_encryption and the default value
is false. but cassandra process expects a truststore and truststore
password for the cassandra to startup.
On Wed, Feb 27, 2019 at 11:25 PM Hannu Kröger wrote:
> I was using this as reference:
>
sure, thanks
On Wed, Feb 27, 2019 at 11:08 PM Jeff Jirsa wrote:
> That’s client to server - internode is different
>
> Don’t think it’s possible without code modifications - please opens JIRA
>
> --
> Jeff Jirsa
>
>
> > On Feb 27, 2019, at 10:21 PM, Hannu Kröger wrote:
> >
> > Is server
I was using this as reference:
https://docs.datastax.com/en/cassandra/3.0/cassandra/configuration/configCassandra_yaml.html#configCassandra_yaml__SecurityProps
And there I see “require client authentication” also in server options ie.
internode encryption.
However I am not sure if this is what
That’s client to server - internode is different
Don’t think it’s possible without code modifications - please opens JIRA
--
Jeff Jirsa
> On Feb 27, 2019, at 10:21 PM, Hannu Kröger wrote:
>
> Is server encryption option ”require_client_auth: false” what you are after?
>
> Hannu
>
>> Jai
Is server encryption option ”require_client_auth: false” what you are after?
Hannu
> Jai Bheemsen Rao Dhanwada kirjoitti 28.2.2019 kello
> 1.57:
>
> Hello,
>
> Is it possible to disable truststore CA check for the cassandra
> internode_encyrption? if yes, is there a config property to do
> On Feb 27, 2019, at 4:20 PM, Jai Bheemsen Rao Dhanwada
> wrote:
>
> I am trying to setup 1-way SSL, basically I am trying to use the SSL options
> only for the encrypt the data on the wire and trust everyone who is
> connecting to me.
>
It *might* be possible with a custom truststore but
;
> *From:* Jai Bheemsen Rao Dhanwada [mailto:jaibheem...@gmail.com]
> *Sent:* Wednesday, February 27, 2019 3:57 PM
> *To:* user@cassandra.apache.org
> *Subject:* Disable Truststore CA check for internode_encryption
>
>
>
> Hello,
>
>
>
> Is it possible to disable
Hello,
Why would you want to do that?
From: Jai Bheemsen Rao Dhanwada [mailto:jaibheem...@gmail.com]
Sent: Wednesday, February 27, 2019 3:57 PM
To: user@cassandra.apache.org
Subject: Disable Truststore CA check for internode_encryption
Hello,
Is it possible to disable truststore
Hello,
Is it possible to disable truststore CA check for the cassandra
internode_encyrption? if yes, is there a config property to do that?
10 matches
Mail list logo
