Skip to content

Commit

Permalink
backport of commit 0c2fadc (hashicorp#19251)
Browse files Browse the repository at this point in the history 
Co-authored-by: Alexander Scheel <alex.scheel@hashicorp.com>
  • Loading branch information
@hc-github-team-secure-vault-core @cipherboy
hc-github-team-secure-vault-core and cipherboy committed Feb 17, 2023
1 parent fe4d56c commit 1ec3397
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion website/content/docs/auth/cert.mdx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,9 @@ description: >-
@include 'x509-sha1-deprecation.mdx'

The `cert` auth method allows authentication using SSL/TLS client certificates
which are either signed by a CA or self-signed.
which are either signed by a CA or self-signed. SSL/TLS client certificates
are defined as having an `ExtKeyUsage` extension with the usage set to either
`ClientAuth` or `Any`.

The trusted certificates and CAs are configured directly to the auth method
using the `certs/` path. This method cannot read trusted certificates from an
Expand Down

0 comments on commit 1ec3397

Please sign in to comment.