?no_verify=1
. Refer to Table 2.4, “Extra parameters for remote URIs” for details.
Location
|
Machine
|
Description
|
Required fields
|
---|---|---|---|
/etc/pki/CA/cacert.pem
|
Installed on all clients and servers
|
CA's certificate
|
n/a
|
/etc/pki/libvirt/private/serverkey.pem
|
Installed on the server
|
Server's private key
|
n/a
|
/etc/pki/libvirt/ servercert.pem
|
Installed on the server
|
Server's certificate signed by the CA
|
CommonName (CN) must be the hostname of the server as it is seen by clients.
|
/etc/pki/libvirt/private/clientkey.pem
|
Installed on the client
|
Client's private key.
|
n/a
|
/etc/pki/CA/cacert.pem
|
Installed on the client
|
Client's certificate signed by the CA
|
Distinguished Name (DN) can be checked against an access control list (
tls_allowed_dn_list ).
|