How can I disable subject alternative validation for the rest.advertised.listener?

According to the documentation, if I set ssl.endpoint.identification.algorithm to an empty string, this validation should be disabled but that does not seem to work in my environment

My configuration is :


Supposing that the leader is

Then, when I post configurations that needs to be forwarded from one of the workers to the leader, it fails with the following error:

    "error_code": 500,
    "message": "IO Error trying to forward REST request: No subject alternative names matching IP address found"

Unfortunately, I cannot run using http and I just need to disable this additional check

It seems that listeners.https.ssl.endpoint.identification.algorithm did it

I am surprised that I could not find this documented anywhere

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.