0

I currently configure a MongoDB cluster to use TLS certificate.

It could be far more easier to deploy, one certificate with aliases accross all cluster, instead of one certificate per node. But there is no mention of this in documentation, is it possible ?

Improve this question

1 Answer 1

Reset to default
0

Actually, yes : https://docs.mongodb.com/manual/core/security-internal-authentication/#x-509

Either the Common Name (CN) or one of the Subject Alternative Name (SAN) entries must match the hostname of the server, used by the other members of the cluster.

For example, the certificates for a cluster could have the following subjects: subject= CN=,OU=Dept1,O=MongoDB,ST=NY,C=US subject= CN=,OU=Dept1,O=MongoDB,ST=NY,C=US subject= CN=,OU=Dept1,O=MongoDB,ST=NY,C=US

Improve this answer

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.