File tree Expand file tree Collapse file tree 4 files changed +12
-15
lines changed Expand file tree Collapse file tree 4 files changed +12
-15
lines changed Original file line number Diff line number Diff line change 1+ For clients that don't provide certificates, :binary: `~bin.mongod ` or
2+ :binary: `~bin.mongos ` encrypts the TLS/SSL connection, assuming the
3+ connection is successfully made.
Original file line number Diff line number Diff line change @@ -1503,8 +1503,7 @@ Core Options
15031503
15041504 .. versionadded:: 4.2
15051505
1506- For clients that do not present certificates, :binary:`~bin.mongos` or :binary:`~bin.mongod` bypasses
1507- TLS/SSL certificate validation when establishing the connection.
1506+ .. include:: /includes/TLS-SSL-certificates.rst
15081507
15091508 For clients that present a certificate, however, :binary:`~bin.mongos` or :binary:`~bin.mongod` performs
15101509 certificate validation using the root certificate chain specified by
@@ -2046,9 +2045,8 @@ Core Options
20462045 Use :setting:`net.tls.allowConnectionsWithoutCertificates`
20472046 instead.
20482047
2049- For clients that do not present certificates, :binary:`~bin.mongos` or :binary:`~bin.mongod` bypasses
2050- TLS/SSL certificate validation when establishing the connection.
2051-
2048+ .. include:: /includes/TLS-SSL-certificates.rst
2049+
20522050 For clients that present a certificate, however, :binary:`~bin.mongos` or :binary:`~bin.mongod` performs
20532051 certificate validation using the root certificate chain specified by
20542052 :setting:`~net.ssl.CAFile` and reject clients with invalid certificates.
Original file line number Diff line number Diff line change @@ -2316,9 +2316,8 @@ TLS Options
23162316
23172317 .. versionadded:: 4.2
23182318
2319- For clients that do not present certificates, :program:`mongod` bypasses
2320- TLS/SSL certificate validation when establishing the connection.
2321-
2319+ .. include:: /includes/TLS-SSL-certificates.rst
2320+
23222321 For clients that present a certificate, however, :program:`mongod` performs
23232322 certificate validation using the root certificate chain specified by
23242323 ``--tlsCAFile`` and reject clients with invalid certificates.
@@ -2788,8 +2787,7 @@ SSL Options (Deprecated)
27882787 Use :option:`--tlsAllowConnectionsWithoutCertificates
27892788 <mongod --tlsAllowConnectionsWithoutCertificates>` instead.
27902789
2791- For clients that do not present certificates, :program:`mongod` bypasses
2792- TLS/SSL certificate validation when establishing the connection.
2790+ .. include:: /includes/TLS-SSL-certificates.rst
27932791
27942792 For clients that present a certificate, however, :program:`mongod` performs
27952793 certificate validation using the root certificate chain specified by
Original file line number Diff line number Diff line change @@ -1008,9 +1008,8 @@ TLS Options
10081008
10091009 .. versionadded:: 4.2
10101010
1011- For clients that do not present certificates, :program:`mongos` bypasses
1012- TLS/SSL certificate validation when establishing the connection.
1013-
1011+ .. include:: /includes/TLS-SSL-certificates.rst
1012+
10141013 For clients that present a certificate, however, :program:`mongos` performs
10151014 certificate validation using the root certificate chain specified by
10161015 ``--tlsCAFile`` and reject clients with invalid certificates.
@@ -1409,8 +1408,7 @@ SSL Options (Deprecated)
14091408 Use :option:`--tlsAllowConnectionsWithoutCertificates
14101409 <mongos --tlsAllowConnectionsWithoutCertificates>` instead.
14111410
1412- For clients that do not present certificates, :program:`mongos` bypasses
1413- TLS/SSL certificate validation when establishing the connection.
1411+ .. include:: /includes/TLS-SSL-certificates.rst
14141412
14151413 For clients that present a certificate, however, :program:`mongos` performs
14161414 certificate validation using the root certificate chain specified by
You can’t perform that action at this time.
0 commit comments