Required. Input only. The x509 PEM-encoded certificate of the CA that
signed the source database server's certificate. The replica will use this
certificate to verify it's connecting to the right host.
Input only. The x509 PEM-encoded certificate that will be used by the
replica to authenticate against the source database server.If this field is
used then the 'client_key' field is mandatory.
Input only. The unencrypted PKCS#1 or PKCS#8 PEM-encoded private key
associated with the Client Certificate. If this field is used then the
'client_certificate' field is mandatory.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe latest version of the \u003ccode\u003eSslConfig\u003c/code\u003e class in the Database Migration v1 API is 2.5.0, with documentation available for versions back to 1.0.0.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSslConfig\u003c/code\u003e is a class used for SSL configuration within the Database Migration service, implementing interfaces like \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, and \u003ccode\u003eIDeepCloneable\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eSslConfig\u003c/code\u003e class has properties for \u003ccode\u003eCaCertificate\u003c/code\u003e, \u003ccode\u003eClientCertificate\u003c/code\u003e, and \u003ccode\u003eClientKey\u003c/code\u003e, which are used to securely authenticate with a source database server.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eType\u003c/code\u003e property of \u003ccode\u003eSslConfig\u003c/code\u003e indicates the current SSL configuration type, based on the presence of \u003ccode\u003eclient_key\u003c/code\u003e, \u003ccode\u003eclient_certificate\u003c/code\u003e, and \u003ccode\u003eca_certificate\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSslConfig\u003c/code\u003e class has two constructors, one default and one that accepts another \u003ccode\u003eSslConfig\u003c/code\u003e object as a parameter for initialization.\u003c/p\u003e\n"]]],[],null,["# Database Migration v1 API - Class SslConfig (2.5.0)\n\nVersion latestkeyboard_arrow_down\n\n- [2.5.0 (latest)](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/latest/Google.Cloud.CloudDms.V1.SslConfig)\n- [2.4.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/2.4.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [2.3.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/2.3.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [2.2.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/2.2.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [2.1.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/2.1.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [2.0.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/2.0.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [1.2.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/1.2.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [1.1.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/1.1.0/Google.Cloud.CloudDms.V1.SslConfig)\n- [1.0.0](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/1.0.0/Google.Cloud.CloudDms.V1.SslConfig) \n\n public sealed class SslConfig : IMessage\u003cSslConfig\u003e, IEquatable\u003cSslConfig\u003e, IDeepCloneable\u003cSslConfig\u003e, IBufferMessage, IMessage\n\nReference documentation and code samples for the Database Migration v1 API class SslConfig.\n\nSSL configuration information. \n\nInheritance\n-----------\n\n[object](https://learn.microsoft.com/dotnet/api/system.object) \\\u003e SslConfig \n\nImplements\n----------\n\n[IMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IMessage-1.html)[SslConfig](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/latest/Google.Cloud.CloudDms.V1.SslConfig), [IEquatable](https://learn.microsoft.com/dotnet/api/system.iequatable-1)[SslConfig](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/latest/Google.Cloud.CloudDms.V1.SslConfig), [IDeepCloneable](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IDeepCloneable-1.html)[SslConfig](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/latest/Google.Cloud.CloudDms.V1.SslConfig), [IBufferMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IBufferMessage.html), [IMessage](https://cloud.google.com/dotnet/docs/reference/Google.Protobuf/latest/Google.Protobuf.IMessage.html) \n\nInherited Members\n-----------------\n\n[object.GetHashCode()](https://learn.microsoft.com/dotnet/api/system.object.gethashcode) \n[object.GetType()](https://learn.microsoft.com/dotnet/api/system.object.gettype) \n[object.ToString()](https://learn.microsoft.com/dotnet/api/system.object.tostring)\n\nNamespace\n---------\n\n[Google.Cloud.CloudDms.V1](/dotnet/docs/reference/Google.Cloud.CloudDms.V1/latest/Google.Cloud.CloudDms.V1)\n\nAssembly\n--------\n\nGoogle.Cloud.CloudDms.V1.dll\n\nConstructors\n------------\n\n### SslConfig()\n\n public SslConfig()\n\n### SslConfig(SslConfig)\n\n public SslConfig(SslConfig other)\n\nProperties\n----------\n\n### CaCertificate\n\n public string CaCertificate { get; set; }\n\nRequired. Input only. The x509 PEM-encoded certificate of the CA that\nsigned the source database server's certificate. The replica will use this\ncertificate to verify it's connecting to the right host.\n\n### ClientCertificate\n\n public string ClientCertificate { get; set; }\n\nInput only. The x509 PEM-encoded certificate that will be used by the\nreplica to authenticate against the source database server.If this field is\nused then the 'client_key' field is mandatory.\n\n### ClientKey\n\n public string ClientKey { get; set; }\n\nInput only. The unencrypted PKCS#1 or PKCS#8 PEM-encoded private key\nassociated with the Client Certificate. If this field is used then the\n'client_certificate' field is mandatory.\n\n### Type\n\n public SslConfig.Types.SslType Type { get; set; }\n\nOutput only. The ssl config type according to 'client_key',\n'client_certificate' and 'ca_certificate'."]]
