You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "Nikolay Tikhonov (JIRA)" <ji...@apache.org> on 2016/01/28 12:15:39 UTC

[jira] [Commented] (IGNITE-2337) SSL & TLS use distinguished name of the certificate (DN)

    [ https://issues.apache.org/jira/browse/IGNITE-2337?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15121241#comment-15121241 ] 

Nikolay Tikhonov commented on IGNITE-2337:
------------------------------------------

I'm not sure that this parameter should be added in SslContextFactory. For checking certificates can be used trust manager from file store (see trustStoreFilePath and trustStorePassword properties) or implement your own. For example implement X509TrustManager has access to issuer DN. 

> SSL & TLS use distinguished name of the certificate (DN)
> --------------------------------------------------------
>
>                 Key: IGNITE-2337
>                 URL: https://issues.apache.org/jira/browse/IGNITE-2337
>             Project: Ignite
>          Issue Type: New Feature
>          Components: 1.4
>            Reporter: Andrey Kartashov
>              Labels: community, newbie
>             Fix For: 1.6
>
>
> Can you add the use of SSLPEERNAME for SslContextFactory parameter to check distinguished name of the certificate. It is necessary to use certificates signed by the certification authority. To get rid of certificate exchange.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)