Home > mailing lists

How to change the TLS certificate/key without restarting the server? - Mailing list pgsql-admin

From	raf
Subject	How to change the TLS certificate/key without restarting the server?
Date	October 17, 2019 08:20:42
Msg-id	20191017052042.ombzxzwzo7xet47t@raf.org Whole thread Raw
Responses	Re: How to change the TLS certificate/key without restarting theserver? (Bruce Momjian <bruce@momjian.us>) Re: How to change the TLS certificate/key without restarting theserver? (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
List	pgsql-admin

Tree view

Hi,

https://www.postgresql.org/docs/12/ssl-tcp.html says:

  "Using a passphrase also disables the ability to
  change the server's SSL configuration without a
  server restart."

How is key TLS key changed without a server restart?
Is replacing the server.crt/server.key files enough
or is there more to it?

And will existing connections continue to use the old
key until they disconnect?

cheers,
raf

pgsql-admin by date:

From: Gediminas Bazilevičius
Date: 16 October 2019, 16:19:33
Subject: how to hide configuration tab in pgadmin

From: "Dave Bolt"
Date: 17 October 2019, 13:13:17
Subject: RE: Save Session?

How to change the TLS certificate/key without restarting the server? - Mailing list pgsql-admin

Previous

Next