Allow TLS 1.2 for Receptor connections (#1300)

- Required for FIPS environment where TLS 1.3 is not supported - TLS 1.3 can still be used if the nodes both agree to use during handshake.
ansible · Mar 29, 2023 · 2b3fd83 · 2b3fd83
1 parent c76ad2c
commit 2b3fd83
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/roles/installer/templates/configmaps/config.yaml.j2 b/roles/installer/templates/configmaps/config.yaml.j2
@@ -269,6 +269,7 @@ data:
         key: /etc/receptor/tls/receptor.key
         name: tlsclient
         rootcas: /etc/receptor/tls/ca/receptor-ca.crt
+        mintls13: false
     - work-signing:
         privatekey: /etc/receptor/signing/work-private-key.pem
         tokenexpiration: 1m