Client-to-node encryption
Client-to-node encryption protects data in flight from client machines to a database cluster using SSL (Secure Sockets Layer).
Client-to-node encryption protects data in flight from client machines to a database cluster using SSL (Secure Sockets Layer). It establishes a secure channel between the client and the coordinator node.
The location of the cassandra.yaml file depends on the type of installation:
Package installations | /etc/cassandra/cassandra.yaml |
Tarball installations | install_location/resources/cassandra/conf/cassandra.yaml |
Prerequisites
To enable client-to-node SSL, set the client_encryption_options in the cassandra.yaml file.
Procedure
On each node under client_encryption_options:
Enable client_encryption_options
on each
node
Restart cassandra