Documentation enhancement around encryption and certificates #769
Description
Hi there,
I have a few questions regarding encryption and certificate management. I read from the documentation that ClusterLink uses mTLS between gateways for control plane and data plane communication.
- Can mTLS encryption be disabled in cases where traffic is already encrypted by the application?
Regarding certificate management, the documentation suggests that for a set of peers (fabric) there exists a single CA certificate.
- Can this CA certificate be rotated?
- Can peer certificates be rotated?
Thanks in advance.