1 {% if nomad_use_tls | bool %}
3 # Specifies the path to the CA certificate to use for Nomad's TLS
5 ca_file = "{{ nomad_tls_ca_file }}"
7 # Specifies the path to the certificate file used for Nomad's TLS
9 cert_file = "{{ nomad_tls_cert_file }}"
11 # Specifies the path to the key file to use for Nomad's TLS communication.
12 key_file = "{{ nomad_tls_key_file }}"
14 # Specifies if TLS should be enabled on the HTTP endpoints on the Nomad
15 # agent, including the API.
16 http = {{ nomad_tls_http | bool | lower }}
18 # Specifies if TLS should be enabled on the RPC endpoints and Raft traffic
19 # between the Nomad servers. Enabling this on a Nomad client makes the
20 # client use TLS for making RPC requests to the Nomad servers.
21 rpc = {{ nomad_tls_rpc | bool | lower }}
23 # This option should be used only when the cluster is being upgraded to
24 # TLS, and removed after the migration is complete. This allows the agent
25 # to accept both TLS and plaintext traffic.
26 rpc_upgrade_mode = {{ nomad_tls_rpc_upgrade_mode | bool | lower }}
28 # Specifies agents should require client certificates for all incoming
29 # HTTPS requests. The client certificates must be signed by the same CA
31 verify_https_client = {{ nomad_tls_verify_https_client | bool | lower }}
33 # Specifies if outgoing TLS connections should verify the server's hostname.
34 verify_server_hostname = {{ nomad_tls_verify_server_hostname | bool | lower }}