Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-25401

XDCR Password encryption without certificates using SASL.

    XMLWordPrintable

Details

    Description

      Full & Half modes were provided in 5.0 but it utilizes certificates.
      In most of the deployments of target clusters, all network ports are closed but XDCR and it is impossible to retrieve certificates on the wire.

      Goal of this improvement is to not use certificates but SASL to hide password on the wire.

      Note: Certificates management is not acceptable.

      Example: SCRAM-SHA would solve the problem.

      Attachments

        Issue Links

          Activity

            People

              yu Yu Sui (Inactive)
              ludovic.dufrenoy Ludovic Dufrenoy (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              11 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                PagerDuty