honeymoose
/
OpenSearch
mirror of https://github.com/honeymoose/OpenSearch.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

add note on extended key usage 

Closes elastic/elasticsearch#362

Original commit: elastic/x-pack-elasticsearch@0a2e0ab6d1
This commit is contained in:
jaymode 2015-08-21 11:17:31 -04:00
parent 892d9774f5
commit 1dbdf2ea1f
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
shield/docs/public/securing-communications/setting-up-ssl.asciidoc
View File

@ -123,6 +123,12 @@ Enter key password for <node01> <2>
--------------------------------------------------
<1> Provides information about the node that this certificate is intended for. In the past, this field specified the node's identity using a DNS name, but that behavior has been deprecated.
<2> If you don't specify a password for the certificate, the keystore password is used.
+
[IMPORTANT]
.Extended Key Usage
==========================
The Extended Key Usage attribute in a certificate is used to indicate the purpose of the key. By default `keytool` does not set this attribute in the certificate. If you are generating your certificates with another tool, please ensure the certificates support both `serverAuth` and `clientAuth` if the Extended Key Usage attribute is set.
==========================
[float]
[[generate-csr]]