Hi Team,
As per documentation, to configure ssl in dse we need to generate/create truststore rootca crt signed crt keystore. I am bit confused here because i have zip file download from our third party CA, file has below files .crt file bundlefile and privatekey file we are using those files in nginx for ssl communication of website. But in case of cassandra can we use those three zip files to implement encryption or do we need to generate csr and bought new cert for each node ?
Can someone please help me and clear my confusions? Also if it is possible to use existing 3 files to configure encryption then please provide guidelines to proceed further.
Thank you team.
This question was
closed
by
Erick Ramirez for the following reason: Other
How do I configure client-node encryption using certificates from a third-party CA?
We recommend using certificates that are signed by well-known certificate authorities (CAs).
You will need to create local SSL certificate and keystore files for the nodes but skip the section on creating your own root CA.
If you need assistance, please log a ticket with DataStax Support and one of our engineers will be happy to assist you. Cheers!
7 People are following this question.
