Documentation
Rate This Document
Findability
Accuracy
Completeness
Readability
SubmitClose

Enabling or Disabling TLS

You can run the haf-tool config command to enable or disable the TLS identity authentication and data encryption and decryption functions. The TLS switch status on host nodes and offload nodes must be the same.

  • Disabling TLS
    • To disable TLS on an HAF host node, go to the installation directory and run the following command:

      ./tools/haf-tool config --set host_tls_switch 0

    • To disable TLS on an HAF offload node (with the HAF library or service), go to the installation directory and run the following command:

      ./tools/haf-tool config --set target_tls_switch 0

  • To enable TLS, change 0 in the preceding commands to 1.
    • After HAF is installed, TLS is enabled by default to ensure data transmission security.
    • Compared with disabling TLS, enabling TLS deteriorates the performance. When TLS is enabled, HAF does not reach its maximum extreme performance.
    • Disabling TLS makes the network more vulnerable to attacks. You are recommended to enable TLS to protect data security.