From 4280ec7ee82865d8e44891032c9822ca463227df Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Markus=20M=C3=A4kel=C3=A4?= <markus.makela@mariadb.com>
Date: Tue, 14 Nov 2017 23:09:26 +0200
Subject: [PATCH] MXS-1019: Update SSL documentation

Added ssl_verify_peer_certificate documentation for listeners and servers.
---
 .../Getting-Started/Configuration-Guide.md       | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/Documentation/Getting-Started/Configuration-Guide.md b/Documentation/Getting-Started/Configuration-Guide.md
index 45ae89a52..2f008a328 100644
--- a/Documentation/Getting-Started/Configuration-Guide.md
+++ b/Documentation/Getting-Started/Configuration-Guide.md
@@ -1048,6 +1048,14 @@ value is specified, the default is 9.
 ssl_cert_verify_depth=5
 ```
 
+#### `ssl_verify_peer_certificate`
+
+Peer certificate verification. This functionality is enabled by default.
+
+When this feature is enabled, the certificate sent by the peer is verified
+against the configured Certificate Authority. If you are using self-signed
+certificates, disable this feature.
+
 **Example SSL enabled server configuration:**
 
 ```
@@ -1251,6 +1259,14 @@ value is specified, the default is 9.
 ssl_cert_verify_depth=5
 ```
 
+#### `ssl_verify_peer_certificate`
+
+Peer certificate verification. This functionality is enabled by default.
+
+When this feature is enabled, the certificate sent by the peer is verified
+against the configured Certificate Authority. If you are using self-signed
+certificates, disable this feature.
+
 **Example SSL enabled listener configuration:**
 
 ```