Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-43150

Enforce TLS - couchbase-cli

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Fixed
    • Major
    • 7.0.2
    • 6.6.0
    • tools

    Description

      Changes have been made to the ns_server which allows new 'strict' setting for cluster encryption level.

      Setting the cluster encryption level to 'strict' is equivalent to setting cluster encryption level to 'all' plus disabling all the non-ssl ports on non-loopback interfaces. 

      curl -sX POST -u Administrator:password http://localhost:9000/settings/security -d "clusterEncryptionLevel=strict"

       

      CLI should also allow this encryption level "strict"

      couchbase-cli setting-security -c hostname:9000 -u Administrator -p password --set --cluster-encryption-level strict

      Attachments

        Issue Links

          backports to

          Technical task - A technical task. MB-48055 [B.P. to 6.6.4] Backport of Enforce TLS - couchbase-cli

          • Major - Major loss of function.
          • Closed
          blocks

          Improvement - An improvement or enhancement to an existing feature or task. MB-12175 Crypto: Enforce TLS

          • Major - Major loss of function.
          • Closed
          depends on

          Improvement - An improvement or enhancement to an existing feature or task. MB-43102 Crypto: Enforce TLS API

          • Major - Major loss of function.
          • Closed
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. MB-46176 Enforce TLS - Backup & Backup Service

          • Major - Major loss of function.
          • Closed
          For Gerrit Dashboard: MB-43150
          # Subject Branch Project Status CR V
          141685,1 MB-43150 Add cluster encryption level strict cheshire-cat couchbase-cli Status: ABANDONED 0 0
          156642,3 MB-43150 Add cluster encryption level strict cheshire-cat couchbase-cli Status: MERGED +2 +1
          156691,2 Merge branch 'cheshire-cat' into master master couchbase-cli Status: MERGED +2 +1
          160926,1 MB-43150 [BP] Add cluster encryption level strict mad-hatter couchbase-cli Status: ABANDONED 0 +1

          Activity

            People

              carlos.gonzalez Carlos Gonzalez Betancort (Inactive)
              Abhijeeth.Nuthan Abhijeeth Nuthan
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty