SSL connections are optional. CA verification not enforced.
AllowUnencryptedAndEncrypted
SSL connections are optional. CA verification not enforced.
EncryptedOnly
SSL connections are required. CA verification not enforced.
Require
SSL connections are required. CA verification not enforced.
Clients may use locally self-signed certificates (default psql client
behavior).
Unspecified
SSL mode is not specified. Defaults to ENCRYPTED_ONLY.
VerifyCa
SSL connections are required. CA verification enforced.
Clients must have certificates signed by a Cluster CA, for example, using
GenerateClientCertificate.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe webpage provides reference documentation for the \u003ccode\u003eSslConfig.Types.SslMode\u003c/code\u003e enum within the AlloyDB v1 API.\u003c/p\u003e\n"],["\u003cp\u003eThis enum defines various SSL mode options, including \u003ccode\u003eAllow\u003c/code\u003e, \u003ccode\u003eAllowUnencryptedAndEncrypted\u003c/code\u003e, \u003ccode\u003eEncryptedOnly\u003c/code\u003e, \u003ccode\u003eRequire\u003c/code\u003e, \u003ccode\u003eUnspecified\u003c/code\u003e, and \u003ccode\u003eVerifyCa\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eEach SSL mode option has a distinct behavior, specifying whether SSL connections are optional or required and if CA verification is enforced.\u003c/p\u003e\n"],["\u003cp\u003eThe latest version of this documentation is 1.9.0 and this page contains historical information back to version 1.0.0.\u003c/p\u003e\n"]]],[],null,[]]
