LBClientSslProfileBinding

LBClientSslProfileBinding
LBClientSslProfileBinding

Client SSL profile binding.

JSON Example
{
    "certificate_chain_depth": 0,
    "client_auth": "string",
    "client_auth_ca_paths": [
        "string"
    ],
    "client_auth_crl_paths": [
        "string"
    ],
    "default_certificate_path": "string",
    "sni_certificate_paths": [
        "string"
    ],
    "ssl_profile_path": "string"
}
integer As int64 As int64
certificate_chain_depth
Optional

Authentication depth is used to set the verification depth in the client certificates chain.

string
client_auth
Optional

Client authentication mode.

Possible values are : REQUIRED, IGNORE,
array of string
client_auth_ca_paths
Optional

If client auth type is REQUIRED, client certificate must be signed by one of the trusted Certificate Authorities (CAs), also referred to as root CAs, whose self signed certificates are specified.

array of string
client_auth_crl_paths
Optional

A Certificate Revocation List (CRL) can be specified in the client-side SSL profile binding to disallow compromised client certificates.

string
default_certificate_path
Required

A default certificate should be specified which will be used if the server does not host multiple hostnames on the same IP address or if the client does not support SNI extension.

array of string
sni_certificate_paths
Optional

Client-side SSL profile binding allows multiple certificates, for different hostnames, to be bound to the same virtual server.

string
ssl_profile_path
Optional

Client SSL profile defines reusable, application-independent client side SSL properties.