Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MSSQL: Support for sslmode=verify-full #1199

Closed
3 tasks done
doodlesbykumbi opened this issue Apr 16, 2020 · 0 comments · Fixed by #1198
Closed
3 tasks done

MSSQL: Support for sslmode=verify-full #1199

doodlesbykumbi opened this issue Apr 16, 2020 · 0 comments · Fixed by #1198
Assignees
@doodlesbykumbi
Labels
component/secretless-broker kind/enhancement

Comments

@doodlesbykumbi
Copy link
Contributor

sslmode=verify-full is a stricter form of sslmode=verify-ca. It dictates that TLS must be used between Secretless and the target service. The server's certificate must be verified entirely, including hostname verification. It should be possible for a user to configure root CA certificate against which the server can be verified.

Acceptance Criteria

  • Support exists for sslmode=verify-full
  • Unit/Integration tests exist for sslmode=verify-full
  • Unit/Integration tests exist for the sslrootcert parameter
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@doodlesbykumbi doodlesbykumbi

Labels
component/secretless-broker kind/enhancement
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update mssql driver to support verify-ca and verify-full cyberark/secretless-broker
2 participants
@doodlesbykumbi @izgeri