All,
GEODE-5338[1], is a feature request to support CA & KEY rotation on the client application. I am proposing a solution[2] to add a new SSL property ( *ssl-use-default-provider*) to let Geode use default security provider[3] (either JDK provided provider or a custom provider) to load and manage key and trust stores. I have submitted a PR[4] with the proposed change and a distributed test to showcase clients using a custom provider. Looking for feedback on the proposal and the PR as well. You can find details about the proposal on the wiki[3]. [1] https://issues.apache.org/jira/browse/GEODE-5338 [2] https://cwiki.apache.org/confluence/display/GEODE/Proposal+for+supporting+custom+java.security.Provider [3] https://docs.oracle.com/javase/8/docs/api/java/security/Provider.html [4] https://github.com/apache/geode/pull/2244
