Details
-
Bug
-
Resolution: Fixed
-
Major
-
6.6.0
-
Untriaged
-
1
-
Unknown
Description
The UI currently has a check box for "enable node-to-node encryption" when starting cluster. However, I'm not sure there is a UI security settings, which enables setting cluster encryption level.
Cluster encryption levels are:
"control": Only control messages minus data(in buckets) are encrypted.
"all": all data is encrypted on the cluster.
"strict": all data is encrypted plus disable all the non-ssl ports on non-loopback interfaces.
They can be set as below, only when all the nodes in the cluster have node-2-node encryption enabled.
curl -sX POST -u Administrator:password http://localhost:9000/settings/security -d "clusterEncryptionLevel=strict" |