Thanks for your help with my last post. 

 

Now, the next task, will be setting up an N-way multimaster:

Server1

Server2

Server3

Server4

 

Using TLS.  To create the certificates, finding a lot of varying ideas via google, what is the “best practice” to create certificates to where I don’t have to touch each client if a server goes down.  Create a wildcard cert or use the subjectAltName in the openssl.cnf file?

 

 

John D. Borresen (Dave)

Linux/Unix Systems Administrator

MIT  Lincoln Laboratory

Surveillance Systems Group

244 Wood St

Lexington, MA  02420

Email: john.borresen@ll.mit.edu