x
/
fuel-plugin-nsxv
Code Issues Proposed changes

Document metadata SSL certificate verification knob 

Remove nova-api-metadata key and certificate, because these options do
not work without key being encrypted.

Related-bug: #1590407
Change-Id: I9c01af1ed4020f37a9c6bd172e319b673ae339ba
This commit is contained in:
Igor Zinovik 2016-07-04 10:45:52 +03:00
parent 019316142c
commit 438610d61d
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
doc/user/source/configuration.rst
View File

@ -110,11 +110,10 @@ Plugin contains the following settings:
initialize the metadata infrastructure to access to metadata proxy service, initialize the metadata infrastructure to access to metadata proxy service,
otherwise metadata proxy will not be deployed. otherwise metadata proxy will not be deployed.
#. Certificate for metadata proxy -- certificate in PEM format that will be #. Bypass metadata service certificate verification -- If enabled connection
used to secure connection between metadata proxy and metadata agent (NSX metadata service will be listening HTTP port. Otherwise self-signed
Edge). certificate will be generated, installed into edge nodes and
nova-api-metadata, HTTPS will be enabled.
#. Private key -- key that was used to generate aforementioned certificate.
#. Metadata allowed ports -- comma separated list of TCP port allowed access to #. Metadata allowed ports -- comma separated list of TCP port allowed access to
the metadata proxy, in addition to 80, 443 and 8775. the metadata proxy, in addition to 80, 443 and 8775.