From 4d24d9cc91b05be3e70f9780121b24bfca013d37 Mon Sep 17 00:00:00 2001
From: Victoria Xia <victoria.f.xia281@gmail.com>
Date: Wed, 4 Nov 2020 11:27:39 -0800
Subject: [PATCH] docs: update docs for TLS configs (6.0.x) (#6576)

---
 .../installation/server-config/security.md        | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/docs/operate-and-deploy/installation/server-config/security.md b/docs/operate-and-deploy/installation/server-config/security.md
index 28c6c1fb6274..92ab83e1ec56 100644
--- a/docs/operate-and-deploy/installation/server-config/security.md
+++ b/docs/operate-and-deploy/installation/server-config/security.md
@@ -65,11 +65,16 @@ ssl.truststore.location=/var/private/ssl/ksql.server.truststore.jks
 ssl.truststore.password=zzzz
 ```
 
-Additional settings are available for configuring ksqlDB for HTTPS. For
-example, if you need to restrict the default configuration for
-[Jetty](https://www.eclipse.org/jetty/), there are settings like
-`ssl.enabled.protocols`. For more information, see
-[Configuration Options for HTTPS](https://docs.confluent.io/current/kafka-rest/config.html#configuration-options-for-https).
+### Additional server configuration options for HTTPS
+
+Additional settings are available for configuring ksqlDB for HTTPS.
+
+`ssl.enabled.protocols`: A comma-separated list of protocols enabled for SSL connections.
+Leave blank to use the Vert.x default (see `DEFAULT_ENABLED_SECURE_TRANSPORT_PROTOCOLS` in the
+[Vert.x TCL SSL options](https://github.com/eclipse-vertx/vert.x/blob/3.9/src/main/java/io/vertx/core/net/TCPSSLOptions.java)).
+
+`ssl.cipher.suites`: A comma-separated list of SSL cipher suites.
+Leave blank to use your JVM defaults.
 
 ### Configure the CLI for HTTPS