proposalbot d31d5b10fe Changes to mrs_operation-guide-lts from docs/doc-exports#515 (MRS comp-lts 2.0.3

Reviewed-by: Kacur, Michal <michal.kacur@t-systems.com>
Co-authored-by: proposalbot <proposalbot@otc-service.com>
Co-committed-by: proposalbot <proposalbot@otc-service.com>

2023-01-19 16:53:12 +00:00

7.1 KiB

Raw Permalink Blame History

original_name: mrs_01_1569.html

SSL

Scenarios

When the secure Flink cluster is required, SSL-related configuration items must be set.

Configuration Description

Configuration items include the SSL switch, certificate, password, and encryption algorithm.

**Table 1** Parameters
Parameter	Description	Default Value	Mandatory
security.ssl.enabled	Main switch of internal communication SSL.	The value is automatically configured according to the cluster installation mode. Security mode: The default value is true. Non-security mode: The default value is false.	Yes
security.ssl.keystore	Java keystore file.	`-`	Yes
security.ssl.keystore-password	Password used to decrypt the keystore file.	`-`	Yes
security.ssl.key-password	Password used to decrypt the server key in the keystore file.	`-`	Yes
security.ssl.truststore	truststore file containing the public CA certificates.	`-`	Yes
security.ssl.truststore-password	Password used to decrypt the truststore file.	`-`	Yes
security.ssl.protocol	SSL transmission protocol version.	TLSv1.2	Yes
security.ssl.algorithms	Supported SSL standard algorithm. For details, see the Java official website.	The default value: "TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"	Yes

7.1 KiB Raw Permalink Blame History

SSL

Scenarios

Configuration Description

7.1 KiB

Raw Permalink Blame History