Details
-
Improvement
-
Resolution: Fixed
-
Major
-
6.6.0
Description
Changes have been made to the ns_server which allows new 'strict' setting for cluster encryption level.
Setting the cluster encryption level to 'strict' is equivalent to setting cluster encryption level to 'all' plus disabling all the non-ssl ports on non-loopback interfaces.
curl -sX POST -u Administrator:password http://localhost:9000/settings/security -d "clusterEncryptionLevel=strict" |
CLI should also allow this encryption level "strict"
couchbase-cli setting-security -c hostname:9000 -u Administrator -p password --set --cluster-encryption-level strict |