Skip to content

Specifying a CA Certificate


If a CA certificate has been specified, MongoDB requires a client certificate from each client, i. e. from all PLOSSYS 5 services that access MongoDB. This requires corresponding properties of the certificate.

  1. Edit the MongoDB configuration file:

    /opt/seal/etc/mongod.conf
    
  2. Replace the following line:

    allowInvalidCertificates: true
    

    by this line:

    CAFile: /opt/seal/etc/tls/ca.pem
    
  3. Save the configuration file.

  4. Restart MongoDB:

    sudo systemctl restart mongod
    

Back to top