Skip to content

Commit

Permalink
Fix typo in ca_sha256 description (#17554) (#17814)
Browse files Browse the repository at this point in the history
  • Loading branch information
dedemorton authored Apr 18, 2020
1 parent f12ff6e commit 7957de3
Showing 1 changed file with 2 additions and 3 deletions.
5 changes: 2 additions & 3 deletions libbeat/docs/shared-ssl-config.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -239,12 +239,11 @@ are `never`, `once`, and `freely`. The default value is never.
[float]
==== `ca_sha256`

This configure a certificate pin can that ca be used to ensure that a specific certificate is used
to as part of the verified chain.
This configures a certificate pin that you can use to ensure that a specific certificate is part of the verified chain.

The pin is a base64 encoded string of the SHA-256 of the certificate.

NOTE: This check is not a replacement for the normal SSL validation but it add additional validation.
NOTE: This check is not a replacement for the normal SSL validation, but it adds additional validation.
If this option is used with `verification_mode` set to `none`, the check will always fail because
it will not receive any verified chains.

Expand Down

0 comments on commit 7957de3

Please sign in to comment.