Using SSL/TLS Between Vertica Clusters

Vertica uses SSL/TLS to secure connections and communications between clients and servers. When you import or export data between Vertica clusters, one of the clusters functions as a client, which means you can use SSL/TLS to protect that connection, too.

Import/export uses an additional configuration parameter, ImportExportTLSMode, to control the level of security to enforce. While Vertica encrypts data during transmission if you have configured internode encryption and a certificate, it can sometimes send plan metadata in plaintext. By default, Vertica attempts to use SSL/TLS and falls back to plaintext; you can change this to always require encryption and, further, to validate the certificate on each connection. For more information about SSL/TLS during import and export operations, see Configuring Connection Security Between Clusters in the Administrator's Guide.