Bug 2385921 - [RFE][Cephadm][NFS-Ganesha] Cephadm support for SNI (Server Name Indication) for mTLS
Summary: [RFE][Cephadm][NFS-Ganesha] Cephadm support for SNI (Server Name Indication)...
Keywords:
Status: VERIFIED
Alias: None
Product: Red Hat Ceph Storage
Classification: Red Hat Storage
Component: Cephadm
Version: 8.1
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
: 9.0
Assignee: Shweta Bhosale
QA Contact: Manisha Saini
URL:
Whiteboard:
Depends On: 2394541
Blocks: 2392401
TreeView+ depends on / blocked
 
Reported: 2025-08-01 11:41 UTC by Manisha Saini
Modified: 2025-10-08 04:33 UTC (History)
5 users (show)

Fixed In Version: ceph-19.2.1-236.0.hotfix.BYOK.el9cp
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
: 2392401 (view as bug list)
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHCEPH-11866 0 None None None 2025-08-01 11:42:04 UTC

Description Manisha Saini 2025-08-01 11:41:49 UTC 
Description of problem:
================
Tracker for cephadm. Please see full details in BZ - https://bugzilla.redhat.com/show_bug.cgi?id=2381960

Cephadm currently lacks support for specifying servername (SNI) and validate_hostname options.
Need support for same from cephadm.


Version-Release number of selected component (if applicable):


How reproducible:
=============
N/A


Steps to Reproduce:
1.
2.
3.

Actual results:
=============
No support for servername (SNI) and validate_hostname 

Expected results:
==============
Cephadm should allow users to configure:

servername: to specify custom SNI string or disable SNI by setting to an empty string.

validate_hostname: to define expected certificate host name, defaulting to hostname or servername, or disable validation entirely with "".


Additional info:
Note You need to log in before you can comment on or make changes to this bug.