Document using wildcard certificates for inter-node TLS

Question

Document using wildcard certificates for inter-node TLS

lukebakken opened this issue a year ago · 4 comments

Is your feature request related to a problem? Please describe.

It's rare, but some users use wildcard certs for inter-node TLS. We should document the correct way to configure Erlang for this scenario.

Answer 1 · 2024-07-05T09:11:40.000Z

Not only for inter-nodes. There is a lack of documentation for federation plugin too.
How to connect to a remote SSL cluster which have wildcard in SAN certificate ?
I tried to pass the following (properly url-encoded) setting in URI parameters :-S :

{customize_hostname_check, [
        {match_fun, public_key:pkix_verify_hostname_match_fun(https)}

Answer 2 · 2024-07-07T13:01:16.000Z

@cvuillemez in your case you are currently out of luck, and the solution is to not use wildcard certs.