As an alternative to mutual TLS authentication, perhaps the Cassandra nodes and AAI pods could be connected to each other via https://www.tinc-vpn.org/ ? It was suggested in another message: https://lists.onap.org/g/onap-discuss/message/13141
I guess it depends on the threat model and what kind of guarantee is being sought. Keong -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#14161): https://lists.onap.org/g/onap-discuss/message/14161 Mute This Topic: https://lists.onap.org/mt/28503357/21656 Group Owner: onap-discuss+ow...@lists.onap.org Unsubscribe: https://lists.onap.org/g/onap-discuss/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-