|
@@ -906,7 +906,7 @@ listener.tcp.external.access.1 = allow all
|
|
|
## Enable the option for X.509 certificate based authentication.
|
|
## Enable the option for X.509 certificate based authentication.
|
|
|
## EMQX will use the common name of certificate as MQTT username.
|
|
## EMQX will use the common name of certificate as MQTT username.
|
|
|
##
|
|
##
|
|
|
-## Value: cn | dn | crt
|
|
|
|
|
|
|
+## Value: cn | dn
|
|
|
## listener.tcp.external.peer_cert_as_username = cn
|
|
## listener.tcp.external.peer_cert_as_username = cn
|
|
|
|
|
|
|
|
## The TCP backlog defines the maximum length that the queue of pending
|
|
## The TCP backlog defines the maximum length that the queue of pending
|
|
@@ -1251,10 +1251,10 @@ listener.ssl.external.ciphers = ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES256-G
|
|
|
## Value: on | off
|
|
## Value: on | off
|
|
|
## listener.ssl.external.honor_cipher_order = on
|
|
## listener.ssl.external.honor_cipher_order = on
|
|
|
|
|
|
|
|
-## Use the CN, DN or CRT field from the client certificate as a username.
|
|
|
|
|
|
|
+## Use the CN, EN or CRT field from the client certificate as a username.
|
|
|
## Notice that 'verify' should be set as 'verify_peer'.
|
|
## Notice that 'verify' should be set as 'verify_peer'.
|
|
|
##
|
|
##
|
|
|
-## Value: cn | dn | crt
|
|
|
|
|
|
|
+## Value: cn | en | crt
|
|
|
## listener.ssl.external.peer_cert_as_username = cn
|
|
## listener.ssl.external.peer_cert_as_username = cn
|
|
|
|
|
|
|
|
## TCP backlog for the SSL connection.
|
|
## TCP backlog for the SSL connection.
|
turtled