From c7d96b551a8470c1b795f14e6c845e984e23677c Mon Sep 17 00:00:00 2001
From: Trevor McCasland <TM2086@att.com>
Date: Tue, 18 Oct 2016 16:34:37 -0500
Subject: [PATCH] [networking] DNS: Add options for SSL based endpoints

From commit c705e2f9f6c7b4a9db4a80a764268e490ea41f01

Closes-Bug: #1593846
Change-Id: Iff830848732277f9e14e613d1490ddd8531bbc3e
---
 doc/networking-guide/source/config-dns-int.rst | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/doc/networking-guide/source/config-dns-int.rst b/doc/networking-guide/source/config-dns-int.rst
index faa4f75754..f2b59fd8cd 100644
--- a/doc/networking-guide/source/config-dns-int.rst
+++ b/doc/networking-guide/source/config-dns-int.rst
@@ -794,6 +794,9 @@ Once this is done, the user has to take the following steps and restart
      reverse lookup (PTR) zones.
    * ``ipv6_ptr_zone_prefix_size``: the size in bits of the prefix for the IPv6
      reverse lookup (PTR) zones.
+   * ``insecure``: Disable SSL certificate validation. By default, certificates
+     are validated.
+   * ``ca_cert``: Path to a valid Certificate Authority (CA) certificate.
 
    The following is an example:
 
@@ -808,6 +811,7 @@ Once this is done, the user has to take the following steps and restart
       allow_reverse_dns_lookup = True
       ipv4_ptr_zone_prefix_size = 24
       ipv6_ptr_zone_prefix_size = 116
+      ca_cert = /etc/ssl/certs/my_ca_cert
 
 Configuration of the externally accessible network for use case 1
 -----------------------------------------------------------------