public sealed class SecuritySettings : IMessage<SecuritySettings>, IEquatable<SecuritySettings>, IDeepCloneable<SecuritySettings>, IBufferMessage, IMessage
Reference documentation and code samples for the Compute Engine v1 API class SecuritySettings.
The authentication and authorization settings for a BackendService.
public AWSV4Signature AwsV4Authentication { get; set; }
The configuration needed to generate a signature for access to private storage buckets that support AWS's Signature Version 4 for authentication. Allowed only for INTERNET_IP_PORT and INTERNET_FQDN_PORT NEG backends.
Optional. A URL referring to a networksecurity.ClientTlsPolicy resource that describes how clients should authenticate with this service's backends. clientTlsPolicy only applies to a global BackendService with the loadBalancingScheme set to INTERNAL_SELF_MANAGED. If left blank, communications are not encrypted.
public RepeatedField<string> SubjectAltNames { get; }
Optional. A list of Subject Alternative Names (SANs) that the client verifies during a mutual TLS handshake with an server/endpoint for this BackendService. When the server presents its X.509 certificate to the client, the client inspects the certificate's subjectAltName field. If the field contains one of the specified values, the communication continues. Otherwise, it fails. This additional check enables the client to verify that the server is authorized to run the requested service. Note that the contents of the server certificate's subjectAltName field are configured by the Public Key Infrastructure which provisions server identities. Only applies to a global BackendService with loadBalancingScheme set to INTERNAL_SELF_MANAGED. Only applies when BackendService has an attached clientTlsPolicy with clientCertificate (mTLS mode).
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-08 UTC."],[[["\u003cp\u003eThe \u003ccode\u003eSecuritySettings\u003c/code\u003e class is part of the Google Cloud Compute Engine v1 API, specifically within the \u003ccode\u003eGoogle.Cloud.Compute.V1\u003c/code\u003e namespace, and is used for defining authentication and authorization settings for a \u003ccode\u003eBackendService\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThis class implements several interfaces, including \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e, providing capabilities for message handling, equality checks, deep cloning, and buffer-based message processing.\u003c/p\u003e\n"],["\u003cp\u003eIt includes properties such as \u003ccode\u003eAwsV4Authentication\u003c/code\u003e, which allows configuration for generating signatures for access to private storage buckets using AWS Signature Version 4, applicable to specific types of NEG backends.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eClientTlsPolicy\u003c/code\u003e, another property of this class, allows specification of a URL that refers to a network security \u003ccode\u003eClientTlsPolicy\u003c/code\u003e resource, which dictates how clients should authenticate with the backends, and it is applicable only to a global \u003ccode\u003eBackendService\u003c/code\u003e with a load balancing scheme of \u003ccode\u003eINTERNAL_SELF_MANAGED\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eSubjectAltNames\u003c/code\u003e property allows for defining a list of Subject Alternative Names (SANs) for a mutual TLS handshake, enabling clients to verify server authorization, which applies exclusively to global \u003ccode\u003eBackendServices\u003c/code\u003e with \u003ccode\u003eINTERNAL_SELF_MANAGED\u003c/code\u003e load balancing and an attached \u003ccode\u003eclientTlsPolicy\u003c/code\u003e in mTLS mode.\u003c/p\u003e\n"]]],[],null,[]]
