So I have set up a cluster with neo4j-helm chart, and configured SSL certificates with k8s cert manager.
I am passing the following configuration via the helm chart's configMap:
NEO4J_dbms_ssl_policy_bolt_enabled: "true" NEO4J_dbms_connector_bolt_tls__level: "REQUIRED" NEO4J_dbms_ssl_policy_https_enabled: "true" NEO4J_dbms_connector_http_enabled: "false" NEO4J_dbms_connector_https_enabled: "true"
As of now, I am able to:
- connect cypher-shell using
neo4j://protocol doesn't work as expected
- open https://mydomain.com:7473 in the browser. SSL certificate is valid there.
However, trying to connect to
neo4j+s://mydomain.com using Neo4j Browser (either the standalone version or the one at mydomain:7473) results in the connection error:
WebSocket connection to 'wss://mydomain:7687/' failed:
If I set
bolt.tls_level to "OPTIONAL", I can connect via
neo4j:// with both the browser and cypher-shell.
Am I missing something? Appreciate any help or clues.