To enable SSL with client authentication, modify the etc/keystone.conf file accordingly under the [ssl] section. SSL configuration example using the included sample certificates:
[ssl] enable = True certfile = <path to keystone.pem> keyfile = <path to keystonekey.pem> ca_certs = <path to ca.pem> cert_required = True
enable: True enables SSL. Defaults to False.certfile: Path to Keystone public certificate file.keyfile: Path to Keystone private certificate file. If the private key is included in the certfile, the keyfile maybe omitted.ca_certs: Path to CA trust chain.cert_required: Requires client certificate. Defaults to False.
