Loading TOC...

MarkLogic 10 Product Documentation
admin.appserverSetSslClientIssuerAuthorityVerification

admin.appserverSetSslClientIssuerAuthorityVerification(
   config as element(configuration),
   appserver-id as (Number|String),
   value as Boolean
) as element(configuration)

Summary

This function determines whether the App Server only accepts client certificates signed directly by a selected CA in the Admin Interface or client certificates that have a parent CA that is indirectly signed by one or more ancestor CAs selected in the Admin Interface (same as prior to MarkLogic 9.0-8).

Parameters
config A configuration specification, typically as returned from one of the Admin module functions.
appserver-id The ID of the App Server. Typically, this is the result of an admin.appserverGetId call.
value Set to true to make the App Server only accept client certificates signed directly by a selected CA in the Admin Interface. Set to false to make the App Server accept client certificates that have a parent signer, along with all of its ancestor signers selected in the Admin Interface (same as prior to MarkLogic 9.0-8).

Required Privileges

This operation requires at least one of the following privileges:

http://marklogic.com/xdmp/privileges/admin/app-server-security

http://marklogic.com/xdmp/privileges/admin/app-server-security/{id}

http://marklogic.com/xdmp/privileges/admin/group-security

http://marklogic.com/xdmp/privileges/admin/group-security/{id}

Example

  
 
  const admin = require('/MarkLogic/admin.xqy');
  const config = admin.getConfiguration()
  admin.appserverGetSslClientIssuerAuthorityVerification(
                   config, 
                   admin.appserverGetId(config, (), "myAppServer"),
                   fn.true()) 

    

Stack Overflow iconStack Overflow: Get the most useful answers to questions from the MarkLogic community, or ask your own question.