Thanks Dinesh. That is ok. Having mutual TLS ensures that the clients authenticate themselves by certificates too. The other authentication of static username/password adds the next layer of authentication. That ways a hacker now needs two keys (certificate and password) to connect to the cluster.
On Tue, Sep 21, 2021 at 3:16 PM Dinesh Joshi <djo...@apache.org> wrote: > It sort of supports it. You still need to send in the username/password > credentials along with the client certificate to authenticate. Cassandra > will not derive the identity purely from the client certificate. > > Dinesh > > > On Sep 21, 2021, at 11:59 AM, S G <sg.online.em...@gmail.com> wrote: > > > > Hello, > > > > Does anyone know if opensource Cassandra support mutual-TLS ? > > The documentation doesn't conclusively deny or accept the support for > the same. > > > > Thanks ! > >
