...
Name | Description |
---|---|
Client certificate | Allows two-way TLS on the server with custom uploaded client certificate (.pfx/.p12 file encrypted with export passphrase). |
CA certificate | Allows one-way TLS on the server with custom uploaded CA certificate (.pem/.crt file). Will be ignored if Verify TLS / SSL is set to false. |
Server certificate validation | Enables / disables TLS certificate (CA) check. If you have setup a custom (self-signed) CA certificate and want that to be used for verification, you need to have the verification enabled. |
Custom Timeout | Connection timeout in seconds for HTTP requests to the ALM tool. Must be a value between 5 and 60. The default is 5 seconds. |
Intermediate CA certificates
If the certificate of your ALM is signed by a intermediate certificate (and not by the root CA one), you need to bring all the intermediate certificates (including the root) into one .pem file first:
Code Block |
---|
-----BEGIN CERTIFICATE-----
INTERMEDIATE CA CERT
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
ROOT CA CERT THAT ISSUES THE INTERMEDIATE CA CERT
-----END CERTIFICATE----- |
One-way / Two-way TLS communication
In one-way TLS, or regular TLS, the X.509 server certificate is created by a CA that the client can trust when wants to connect.
...