|  | <?xml version="1.0"?> | 
						
						
							|  | <?xml-stylesheet type="text/xsl" href="configuration.xsl"?> | 
						
						
							|  | <!-- | 
						
						
							|  |    Licensed to the Apache Software Foundation (ASF) under one or more | 
						
						
							|  |    contributor license agreements.  See the NOTICE file distributed with | 
						
						
							|  |    this work for additional information regarding copyright ownership. | 
						
						
							|  |    The ASF licenses this file to You under the Apache License, Version 2.0 | 
						
						
							|  |    (the "License"); you may not use this file except in compliance with | 
						
						
							|  |    the License.  You may obtain a copy of the License at | 
						
						
							|  | 
 | 
						
						
							|  |        http://www.apache.org/licenses/LICENSE-2.0 | 
						
						
							|  | 
 | 
						
						
							|  |    Unless required by applicable law or agreed to in writing, software | 
						
						
							|  |    distributed under the License is distributed on an "AS IS" BASIS, | 
						
						
							|  |    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | 
						
						
							|  |    See the License for the specific language governing permissions and | 
						
						
							|  |    limitations under the License. | 
						
						
							|  | --> | 
						
						
							|  | <configuration> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.truststore.location</name> | 
						
						
							|  |   <value></value> | 
						
						
							|  |   <description>Truststore to be used by NN and DN. Must be specified. | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.truststore.password</name> | 
						
						
							|  |   <value></value> | 
						
						
							|  |   <description>Optional. Default value is "". | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.truststore.type</name> | 
						
						
							|  |   <value>jks</value> | 
						
						
							|  |   <description>Optional. The keystore file format, default value is "jks". | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.truststore.reload.interval</name> | 
						
						
							|  |   <value>10000</value> | 
						
						
							|  |   <description>Truststore reload check interval, in milliseconds. | 
						
						
							|  |   Default value is 10000 (10 seconds). | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.keystore.location</name> | 
						
						
							|  |   <value></value> | 
						
						
							|  |   <description>Keystore to be used by NN and DN. Must be specified. | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.keystore.password</name> | 
						
						
							|  |   <value></value> | 
						
						
							|  |   <description>Must be specified. | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.keystore.keypassword</name> | 
						
						
							|  |   <value></value> | 
						
						
							|  |   <description>Must be specified. | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.keystore.type</name> | 
						
						
							|  |   <value>jks</value> | 
						
						
							|  |   <description>Optional. The keystore file format, default value is "jks". | 
						
						
							|  |   </description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | <property> | 
						
						
							|  |   <name>ssl.server.exclude.cipher.list</name> | 
						
						
							|  |   <value>TLS_ECDHE_RSA_WITH_RC4_128_SHA,SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, | 
						
						
							|  |   SSL_RSA_WITH_DES_CBC_SHA,SSL_DHE_RSA_WITH_DES_CBC_SHA, | 
						
						
							|  |   SSL_RSA_EXPORT_WITH_RC4_40_MD5,SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, | 
						
						
							|  |   SSL_RSA_WITH_RC4_128_MD5</value> | 
						
						
							|  |   <description>Optional. The weak security cipher suites that you want excluded | 
						
						
							|  |   from SSL communication.</description> | 
						
						
							|  | </property> | 
						
						
							|  | 
 | 
						
						
							|  | </configuration>
 |