Jer
Reputation: 113
Using a single certificate for inter-node encryption on Cassandra
I have inter-node encryption setup on a small Cassandra cluster (4 nodes), and each node has its own key pair. That means that I need to distribute a trusted keystore to all nodes that contains the public key for every other node in the cluster, which makes it a bit of a pain to update when I add nodes to the cluster.
Does Cassandra allow using a single certificate/key for all nodes in a cluster, or will it complain? All the docs I see online tell me to generate a separate key pair for each node, but does not address sharing certificates. If it is allowed, what are the drawbacks to this method?
Upvotes: 2
Views: 629
Answers (1)
Related Questions
- Cassandra SSL with own Certificate Authority
- How to connect to Cassandra with NodeJS using SSL?
- Cassandra: how to setup client-to-node encryption?
- How to configure sslOptions using Node.js driver for Cassandra?
- Connecting to Cassandra (2.1.0) over SSL from cqlsh
- How does Cassandra node-to-node and client-to-node encryption actually work?
- Cassandra nodes cannot see each other when internode encryption is enabled
- Cassandra: how to setup node-to-node encryption?
- Setting up inter-node encryption in Cassandra
- Securing Cassandra communication with TLS/SSL