add note on extended key usage

Closes elastic/elasticsearch#362

Original commit: elastic/x-pack-elasticsearch@0a2e0ab6d1
This commit is contained in:
jaymode 2015-08-21 11:17:31 -04:00
parent 892d9774f5
commit 1dbdf2ea1f
1 changed files with 7 additions and 1 deletions

View File

@ -123,6 +123,12 @@ Enter key password for <node01> <2>
-------------------------------------------------- --------------------------------------------------
<1> Provides information about the node that this certificate is intended for. In the past, this field specified the node's identity using a DNS name, but that behavior has been deprecated. <1> Provides information about the node that this certificate is intended for. In the past, this field specified the node's identity using a DNS name, but that behavior has been deprecated.
<2> If you don't specify a password for the certificate, the keystore password is used. <2> If you don't specify a password for the certificate, the keystore password is used.
+
[IMPORTANT]
.Extended Key Usage
==========================
The Extended Key Usage attribute in a certificate is used to indicate the purpose of the key. By default `keytool` does not set this attribute in the certificate. If you are generating your certificates with another tool, please ensure the certificates support both `serverAuth` and `clientAuth` if the Extended Key Usage attribute is set.
==========================
[float] [float]
[[generate-csr]] [[generate-csr]]