iSharkFly-Docs/opensearch-docs-cn
1
0
Fork 0
mirror of https://github.com/iSharkFly-Docs/opensearch-docs-cn synced 2025-03-07 10:29:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add note about configuring root CA for ldap in both authc and authz (#5727)

Browse Source 
* Add note about configuring root CA for ldap in both authc and authz

Signed-off-by: Craig Perkins <cwperx@amazon.com>

* Address review comments

Signed-off-by: Craig Perkins <cwperx@amazon.com>

---------

Signed-off-by: Craig Perkins <cwperx@amazon.com>
This commit is contained in:
Craig Perkins 2023-12-04 13:28:36 -05:00 committed by GitHub
parent 9c4e13bd2e
commit cba2dee4c3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
_security/authentication-backends/ldap.md
View File

@ -160,7 +160,12 @@ plugins.security.ssl.http.truststore_filepath: ...
If your server uses a certificate signed by a different CA, import this CA into your truststore or add it to your trusted CA file on each node.
You can also use a separate root CA in PEM format by setting one of the following configuration options:
You can also use a separate root CA in PEM format.
When configuring a separate root CA for LDAP, make sure to include the setting in all instances of the LDAP `config:` settings, including in both the `authc` and `authz` options of the configuration.
{: .note}
To configure a separate root CA, use one of the following configuration options:
```yml
config: