LBClientSslProfileBinding

Client SSL profile binding.

Properties

string

default_certificate_path Required

A default certificate should be specified which will be used if the server does not host multiple hostnames on the same IP address or if the client does not support SNI extension.

integer as int64

certificate_chain_depth Optional

Authentication depth is used to set the verification depth in the client certificates chain.

string

client_auth Optional

Client authentication mode.

Possible values are: REQUIRED , IGNORE

array of string

client_auth_ca_paths Optional

If client auth type is REQUIRED, client certificate must be signed by one of the trusted Certificate Authorities (CAs), also referred to as root CAs, whose self signed certificates are specified.

array of string

client_auth_crl_paths Optional

A Certificate Revocation List (CRL) can be specified in the client-side SSL profile binding to disallow compromised client certificates.

array of string

sni_certificate_paths Optional

Client-side SSL profile binding allows multiple certificates, for different hostnames, to be bound to the same virtual server.

string

ssl_profile_path Optional

Client SSL profile defines reusable, application-independent client side SSL properties.

JSON Example

Show optional properties

{
	"default_certificate_path": "string"
}

{
	"certificate_chain_depth": 0,
	"client_auth": "REQUIRED",
	"client_auth_ca_paths": [
		"string"
	],
	"client_auth_crl_paths": [
		"string"
	],
	"default_certificate_path": "string",
	"sni_certificate_paths": [
		"string"
	],
	"ssl_profile_path": "string"
}

Vendor Extensions

This class contains the following vendor extensions defined in the spec:

x-vmw-nsx-module: PolicyLoadBalancer

[{"label":"Latest (v1.0)","version":"latest"}]

nsx-vmc-policy

Property Of

InlineLBVirtualServer1

LBClientSslProfileBinding

Properties

JSON Example

Vendor Extensions

Property Of

Was this page helpful?