Require TLS or TLS-PSK encryption

Require TLS or TLS-PSK encryption

Require TLS or TLS-PSK encryption

add will additionally listen for TLS connections. only will disable TLS connections. force will redirect non-TLS traffic to the TLS connection.

TLS options for virtual host

The path of a PEM encoded TLS private key

The path of a PEM encoded TLS private key

add will additionally listen for TLS connections. only will disable TLS connections. force will redirect non-TLS traffic to the TLS connection.

The path of a PEM encoded TLS private key

TLS options for virtual host

Require TLS or TLS-PSK encryption

Require TLS or TLS-PSK encryption

TLS certificate and key paths

TLS Options for the File Daemon

TLS Options for the Storage Daemon

TLS Options for the Director

TLS private key file

Whether to use TLS wrapper-mode.

Override the default TLS port for this virtual host.

The path to the TLS key.

TLS certificate file

add will additionally listen for TLS connections. only will disable TLS connections. force will redirect non-TLS traffic to the TLS connection.

Path to the TLS key file.

Path to the TLS certificate file.

The path to the TLS certificate.

Override the default TLS port for this virtual host.

The path to the TLS key.

  nix-shell -p dendrite --command "generate-keys --tls-cert server.crt --tls-key server.key"

Other endpoint's CA to set up TLS protocol.

Specifies if TLS should be enabled

Specifies if TLS should be enabled

Disable TLS client listener

The path to the TLS certificate.

  nix-shell -p dendrite --command "generate-keys --tls-cert server.crt --tls-key server.key"

Specifies if TLS should be enabled

Whether to enable TLS encryption.

TLS key

Path to the TLS private key file

Path to the TLS certificate file

Enables HTTP/3 over QUIC on the UDP port for TLS

TLS options for virtual host

TLS certificate

The TLS mode to use

Path to the TLS key file.

These options tell pgmanage where the TLS Certificate and Key files reside

Enables HTTP/3 over QUIC on the UDP port for TLS

Path to the certificate used for TLS.

Whether to serve over TLS.

Path to the TLS certificate file.

CAs to trust for remote TLS requests.

TLS backend to use.

Path to the private key used for TLS.

Override the default TLS port for this virtual host.

Skydns path of TLS client certificate - public key.

Skydns path of TLS client certificate - private key.

The TLS certificate to use for encryption.

The path of a PEM encoded TLS private key

The path of a PEM encoded TLS private key

Path to private key file.

Add support for secure TLS on c2s/s2s connections

TLS Key for the gRPC server, leave blank to disable TLS

Whether TLS encryption should be used

Enable SSL/TLS encryption.

Whether to enable Whether TLS encryption should be used..

TLS Certificate for gRPC server, leave blank to disable TLS

TLS Options for the Director in this Configuration.

TLS Options for the Director in this Configuration.

TLS Key for the gRPC server, leave blank to disable TLS

TLS Key for the gRPC server, leave blank to disable TLS

Other endpoint's CA private key

Enables HTTP/3 over QUIC on the UDP port for TLS

TLS Certificate for gRPC server, leave blank to disable TLS

TLS Certificate for gRPC server, leave blank to disable TLS

Arguments for the specified certificate loader

Additional TLS/SSL-related configuration options

Specifies if TLS should be enabled

Specifies if TLS should be enabled

Additional TLS/SSL-related configuration options

TLS Key for the gRPC server, leave blank to disable TLS

TLS Key for the gRPC server, leave blank to disable TLS

This option determines whether nghttpx will negotiate its connection with a backend server using TLS or not

Whether to enable LDAPS protocol

TLS Certificate for gRPC server, leave blank to disable TLS

TLS Certificate for gRPC server, leave blank to disable TLS

TLS certificates are obtained by modules called "certificate loaders"

TURN listener port for TLS

Key / certificate pairs for the virtual host.

TLS Key for the client's certificate

The path specifying a PEM encoded TLS CA certificate(s)

The path specifying a PEM encoded TLS CA certificate(s)

The path specifying a PEM encoded TLS CA certificate(s)

TLS CA Certificates to use to verify gRPC servers

SSL/TSL requirement level for BOLT traffic.

Key / certificate pairs for the virtual host.

TLS private key to use

FoundationDB Transport Security Layer (TLS) settings.

TLS Certificates to use to identify this client to the server

Additional TLS/SSL-related configuration options

Path to key file

TLS Key for the gRPC server, leave blank to disable TLS

TLS Certificate for gRPC server, leave blank to disable TLS

Path to key file

Use TLS when talking to the gRPC server

Enable or disable TLS

Alternative listening port for TLS and DTLS protocols.

addr:port to listen on for HTTPS clients

TLS key to use instead of the hardcoded on in case of HTTPS connections

TLS CA to verify clients against

Use this as the SNI while connecting via TLS

Path to server TLS certificate.

Whether or not TLS should be used for the database connection.

Key / certificate pairs for the virtual host.

Common name attribute of allowed peer certificates

Common name attribute of allowed peer certificates

Common name attribute of allowed peer certificates

TLS CA to verify clients against

TLS CA to verify clients against

A list of attribute sets containing paths to TLS certificates and keys

Path to server TLS certificate key.

Path to the private key used for TLS.

HTTP status used by globalRedirect & forceSSL

Path to the certificate used for TLS.

The path specifying a PEM encoded TLS CA certificate(s)

The path specifying a PEM encoded TLS CA certificate(s)

HTTP status used by globalRedirect & forceSSL

"Peer verification string"

Only applies if ssl_enable is activated

The full path to the PEM encoded TLS certificate

The full path to the PEM encoded TLS certificate

Path to key file

The full path to the PEM encoded TLS certificate

Private key file for the certificate.

TLS CA to verify clients against

TLS CA to verify clients against

Restrict the TLS protocol versions of this policy to those defined here.

Override SMTP cipher configuration.

Whether to enable TLS on the listener socket.

Verify peer certificate

Verify peer certificate

Verify peer certificate

Path to certificate file.

PEM encoded private key for TLS

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

If true, a backend match requires the frontend connection be TLS encrypted

HTTP status used by globalRedirect & forceSSL

Make the server communicate via TLS

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

TLS CA to verify clients against

Domain name to request a TLS certificate for.

Path to the TLS certificate file

Common name attribute of allowed peer certificates

Common name attribute of allowed peer certificates

The full path to the PEM encoded TLS certificate

The full path to the PEM encoded TLS certificate

TLS certificate to use

Whether to enable Whether to allow insecure TLS..

Path to certificate file

Path to certificate file

Path certificate authority used to sign the cluster certificates.

TLS certificate to use instead of the hardcoded one in case of HTTPS connections

File containing x509 private key matching tlsCertFile.

Type of ACME challenge to use, currently supported types: HTTP-01 or TLS-ALPN-01.

Disable DTLS client listener

PEM encoded X509 certificate for TLS

Verify peer certificate

Verify peer certificate

File containing x509 Certificate for HTTPS.

Whether to enable the TLSRPT services.

TLS key in pem format.

Path to certificate file

Path to certificate describing the server.

Whether to verify the TLS certificate of the server

Use TLS for SMTP connection

TLS key in pem format.

TLS chain in pem format.

TLS chain in pem format.

Kubernetes apiserver private key file.

Path to the private key corresponding to the server certificate

Path to CA certificate to use for client authentication.

The tlsrpt-reporter package to use.

Kubernetes apiserver certificate file.

Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.

If set to

• "true": all DNS lookups will be encrypted

When HTTP-01 challenge is chosen, letsencrypt must set up a verification endpoint, and it will be listening on: :http = port 80.

Whether to enable TLS on the listener socket.

File containing trusted certification authorities (CA) to verify certificates of mailservers contacted for mail delivery

The server TLS security level

Configures the remote read request's TLS settings.

Whether to enable postfix-tlspol.

Configures the remote write request's TLS settings.

Type of TLS authentication with the SMTP server

If your gotify endpoint uses https, leave this option set to default

Kubernetes controller-manager private key file.

Kubernetes controller-manager certificate file.

Configures the scrape request's TLS settings.

The postfix-tlspol package to use.

The client TLS security level.

https://www.postfix.org/postconf.5.html#smtp_tls_security_level

List of extra flags to pass to the tlsrpt-reportd executable

If enabled, use TLS (encryption) over an LDAP (port 389) connection

Flags from tlsrpt-fetcher(1) as key-value pairs.

Flags from tlsrpt-reportd(1) as key-value pairs.

Path to already created certificate.

The postfix-tlspol configuration file as a Nix attribute set

Path to key for already created certificate.

List of extra flags to pass to the tlsrpt-reportd executable

Path to TLS private key.

Whether to configure permissions to allow integration with Postfix.

Whether to enable skipping TLS verification when connecting to InfluxDB.

Flags from tlsrpt-collectd(1) as key-value pairs.

Path to TLS certificate.

Upstream DNS resolver

Path to the sqlite database.

Path to the collectd sqlite database.

Log level

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

Path to the cache file.

Storage backend definition.

Whether to configure the required settings to use postfix-tlspol in the local Postfix instance.

Whether to configure nginx as a reverse proxy for Invidious

Comma-separated list of fetcher programs that retrieve collectd data.

IP and port to your DNS resolver

Path or address/port where postfix-tlspol binds its socket to.

Level of log messages to emit.

Level of log messages to emit.

Use custom DH TLS key, stored in PEM format in the file.

Whether to enable TLS support.

set to true for using STARTTLS to start a TLS connection

Path to TLS key

Whether to use TLS encryption for DNS queries

Mutual TLS - require clients be signed by this CA.

Level of log messages to emit.

Whether to prefetch DNS records when the TTL of a cached record is about to expire.

Mutual TLS - regex for whitelist of allowed client CNs.

Skydns path of TLS certificate authority public key.

TLS configuration.

Ciphers to choose from when negotiating TLS handshakes.

Use TLS for Redis connection.

CA certificate to validate API server certificate with.

Configures the scrape request's TLS settings.

Permissions on the UNIX socket.

CA certificate to validate API server certificate with.

Whether to use SSL/TLS to connect to dynamic DNS provider.

Path at which the UNIX socket will be created.

Key file for client cert authentication to the server.

Whether to enable the submissions service configured in master.cf

Whether to enable the stunnel TLS tunneling service.

TLS configuration.

TLS configuration.

Key file for client cert authentication to the server.

List of paths to the server private keys and certificates.

https://www.postfix.org/postconf.5.html#smtpd_tls_chain_files

Call to an HTTPS client, that accepts the URL on the commandline and the request body from stdin.

TLS certificates directory to use for encryption

CA certificate to validate API server certificate with.

Certificate file for client cert authentication to the server.

File containing CA certificates of root CAs trusted to sign either remote SMTP server certificates or intermediate CA certificates

Addresses and ports on which kresd should provide DNS over TLS (see RFC 7858)

Path to TLS key to use for connections to public-inbox-nntpd(1).

Path to TLS key to use for connections to public-inbox-imapd(1).

      Whether to enable the `submission` service configured in master.cf

Certificate file for client cert authentication to the server.

TLS configuration.

TLS configuration.

TLS configuration.

TLS configuration.

Key file for client cert authentication to the server.

Configures the Consul request's TLS settings.

Path to TLS certificate to use for connections to public-inbox-imapd(1).

Path to TLS certificate to use for connections to public-inbox-nntpd(1).

Contact information embedded into the reports.

Private key to use for TLS

Server configuration, see https://maddy.email for more information

Port where the Portunus webserver should listen on

Certificate file for client cert authentication to the server.

TLS configuration.

The hosts config to be merged with the settings

Whether to enable kTLS support

Whether to enable kTLS support

Allowed TLS protocol versions.

Whether to enable kTLS support

Server side EAP-Identity to expect in the EAP method

Allowed SSL/TLS protocol versions.

Whether to enable kTLS support

Port number for remote control operations (uses TLS over TCP).

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Used to select a secure SMTP connection

Path to TLS certificate

Whether to enable sslmate-agent, a daemon for managing SSL/TLS certificates on a server.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Mutual TLS - client certificate to call remote instance requiring client certs.

Mutual TLS - client key to call remote instance requiring client certs

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable TLS for connecting to the SMTP server.

TLS configuration.

TLS configuration.

TLS configuration.

Permissions to the UNIX socket, if configured.

Turns on the OCSP Must-Staple TLS extension

Attrset to be transformed into YAML for host config

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Sender address used for reports.

Public URL of the API address of the reverse proxy/tls terminator

Address to bind on for API connections relied by the reverse proxy/tls terminator.

Port to bind on for API connections relied by the reverse proxy/tls terminator.

TLS configuration.

Listening port

Listening port

Attrset to be transformed into YAML for host config

TLS key path.

If set, use NixOS-generated ACME certificate with the specified name for TLS

Make the Podman and Docker compatibility API available over the network with TLS client certificate authentication

Public domain of the API address of the reverse proxy/tls terminator.

If you are providing TLS certificates directly to the Coder server, you must use a single certificate for the root and wildcard domains.

Path to the TLS certificate private key.

Path to the TLS certificate.

TLS configuration.

Username or user ID of the user allowed to to fetch Tailscale TLS certificates for the node.

Only applies if ssl_enable is activated

Only applies if ssl_enable is activated

Path to a sendmail-compatible executable for delivery reports.

If not null, this will add an entry to services.librespeed.servers and configure librespeed to use TLS.

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable kTLS support

Whether to enable the smtp service configured in the master.cf

Whether to enable kTLS support

Public URL of the API address of the reverse proxy/tls terminator

Turns on the OCSP Must-Staple TLS extension

Address to bind on for API connections relied by the reverse proxy/tls terminator.

Cassandra ships with JMX accessible only from localhost

Whether to enable SSL/TLS support.

TCP Port to bind on for API connections relayed by the reverse proxy/tls terminator.

Whether to enable kTLS support

TLS configuration.

Whether to enable kTLS support

Server mode ghostunnels (TLS listener -> plain TCP/UNIX target)

Whether the database connection should be secured by SSL / TLS

Whether to enable kTLS support

Attrset to be transformed into YAML for host config

TURN listener port for UDP and TCP

Whether to enable kTLS support

Specifies which file should be used as the list of trusted CA when negotiating a TLS session.

TLS configuration.

How strictly to enforce clients connection with TLS.

Whether the server supports TLS

Neo4j SSL policy for BOLT traffic

Whether to enable kTLS support

The directory where TLS certificates are stored.

With this option, you can customize an nginx virtual host which already has sensible defaults for radicle-httpd

Whether to automatically generate cfssl API webserver TLS cert and key, if they don't exist.

Name of the organization sending out the reports.

The TLS certificate, as a base64-encoded string

Extra x509 Subject Alternative Names to be added to the cfssl API webserver TLS cert.

Whether to enable kTLS support

The TLS certificate private key, as a base64-encoded string

Override the TLS SNI field value

Whether to enable nginx virtual host that will serve the javascript application and act as a proxy for the XMPP server

Whether to use implicit TLS instead of STARTTLS (usually port 465)

Use an encrypted SSL/TLS connection.

Use an encrypted SSL/TLS connection.

Force implicit TLS as per RFC 8314 3.3.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

The SSL / TLS CA certificate that verifies the identity of the database server

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

The path to a PEM formatted certificate to use for TLS/SSL connections.

The external URL under which you will serve the api

The external URL under which you will serve the web interface

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Whether to enable kTLS support

The path to a PEM formatted private key to use for TLS/SSL connections.

Enable recommended TLS settings.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

Configure aspects of TLS connection handling for both inbound and outbound connections

Server certificate to use for TLS

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Redirect given http port number to TLS.

Path to lnd TLS certificate.

Encryption scheme:

• 0: No encryption
• 1: TLS
• 2: STARTTLS

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Whether to disable Prosody features not needed by Jitsi Meet

Address to listen on for connections by the reverse proxy/tls terminator.

Extra x509 Subject Alternative Names to be added to the kubernetes apiserver tls cert.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

Whether to enable automatic TLS setup.

Path to the TLS key for the web UI

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Chain of CA-certificates to which our certificateFile is relative

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Whether to enable kTLS support

CA certificate to validate API server certificate with.

Path to the TLS certificate for the web UI

TLS certificate path.

TLS ceritficate path.

Disable validation of the server certificate.

Key file for client cert authentication to the server.

Disable validation of the server certificate.

Path to configuration file that can enable TLS or authentication.

List of TCP ports to open in firewall

Extra environment variables to set for the service

Certificate file for client cert authentication to the server.

Whether to use TLS.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Addresses (IPv4 or IPv6) to listen on for connections by the reverse proxy/tls terminator

Disable validation of the server certificate.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

CA certificate to validate API server certificate with.

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Key file for client cert authentication to the server.

Omits password checking, allowing anyone to log in with any user name unless other mandatory authentication methods (eg TLS client certificates) are configured.

Whether to enable kTLS support

TCP port number for receiving TLS connections.

Certificate file for client cert authentication to the server.

Certificate file for client cert authentication to the server.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Certificate file for client cert authentication to the server.

Unix domain socket path to bind this listener to.

CA certificate to validate API server certificate with.

Key file for client cert authentication to the server.

Choice of TLS proxy server.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Certificate file for client cert authentication to the server.

Append Yggdrasil router configuration with listeners on loopback addresses (127.0.0.1) and preselected ports to support peering using client-server protocols like quic and tls

CA certificate to validate API server certificate with.

Level of TLS verification

Key file for client cert authentication to the server.

Disables TLS verification of the certificate presented by your origin

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Path to configuration file that can enable TLS or authentication.

Certificate file for client cert authentication to the server.

CA certificate to validate API server certificate with.

Key file for client cert authentication to the server.

Interface address for receiving TLS connections.

Enable this option when changedetection-io runs behind a reverse proxy, so that it trusts X-* headers

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Certificate file for client cert authentication to the server.

CA certificate to validate API server certificate with.

Key file for client cert authentication to the server.

Whether to use an encrypted SSL/TLS connection.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Certificate file for client cert authentication to the server.

Timeout for establishing a new TCP connection to your origin server

Addresses (IPv4 or IPv6) to listen on for connections by the reverse proxy/tls terminator

Disable validation of the server certificate.

Disable validation of the server certificate.

File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify ServiceAccount tokens

Disable validation of the server certificate.

Disable validation of the server certificate.

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

Disable validation of the server certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

A directory that should contain the policy files, used to customize Botan’s behaviour when negotiating the TLS connections with the IRC servers.

Disable validation of the server certificate.

This depends on mail_smtpmode

The path to a TLS certificate bundle used to verify the server's certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

imap port number (at the moment only tls connection is supported)

Directory for storing certificates to be used by Neo4j for TLS connections

Disable validation of the server certificate.

Unix domain socket path to bind this listener to.

Disable validation of the server certificate.

Disable validation of the server certificate.

Disable validation of the server certificate.

Authentication to expect from remote

Only use TLSv1.3 (default also allows TLSv1.2).

Path to file containing environment variables

Whether to enable the dp9ik pam module provided by tlsclient