docs: update docs for TLS configs (6.0.x) (confluentinc#6576)

vpapavas · Nov 4, 2020 · 4d24d9c · 4d24d9c
1 parent 75fa5ab
commit 4d24d9c
Showing 1 changed file with 10 additions and 5 deletions.
diff --git a/docs/operate-and-deploy/installation/server-config/security.md b/docs/operate-and-deploy/installation/server-config/security.md
@@ -65,11 +65,16 @@ ssl.truststore.location=/var/private/ssl/ksql.server.truststore.jks
 ssl.truststore.password=zzzz
 ```
 
-Additional settings are available for configuring ksqlDB for HTTPS. For
-example, if you need to restrict the default configuration for
-[Jetty](https://www.eclipse.org/jetty/), there are settings like
-`ssl.enabled.protocols`. For more information, see
-[Configuration Options for HTTPS](https://docs.confluent.io/current/kafka-rest/config.html#configuration-options-for-https).
+### Additional server configuration options for HTTPS
+
+Additional settings are available for configuring ksqlDB for HTTPS.
+
+`ssl.enabled.protocols`: A comma-separated list of protocols enabled for SSL connections.
+Leave blank to use the Vert.x default (see `DEFAULT_ENABLED_SECURE_TRANSPORT_PROTOCOLS` in the
+[Vert.x TCL SSL options](https://github.com/eclipse-vertx/vert.x/blob/3.9/src/main/java/io/vertx/core/net/TCPSSLOptions.java)).
+
+`ssl.cipher.suites`: A comma-separated list of SSL cipher suites.
+Leave blank to use your JVM defaults.
 
 ### Configure the CLI for HTTPS