Support #20888
closed
- Target version changed from Development 2023-08-30 to Development 2023-09-13 sprint
- Target version changed from Development 2023-09-13 sprint to Development 2023-09-27 sprint
- Target version changed from Development 2023-09-27 sprint to Development 2023-09-13 sprint
- Category set to Documentation
- Assigned To set to Lucas Di Pentima
- Status changed from New to In Progress
Suggest minor text edits below, rest LGTM
Securing your TLS certificate keys (AWS specific) (optional)¶
When using SSL_MODE=bring-your-own, you can keep your TLS certificate keys encrypted on the server nodes. This reduces the risk of certificate leaks from node disk volumes snapshots or backups.
This feature is currently implemented in AWS by providing the certificate keys’ password via Amazon’s Secrets Manager service, and installing appropriate services on the nodes that provide this password to nginx via a file that only lives in system RAM.
- Status changed from In Progress to Resolved
Also available in: Atom
PDF
Updated by 
Updated by