In the context of SSL encryption for Tableau Server, what is an important consideration when renewing an SSL certificate?
A. Renewing the certificate with the exact same specifications as the old one to avoid configuration changes
B.
Ensuring that the new SSL certificate is renewed and installed before the expiration of the current certificate
C. Switching to a different SSL protocol version during renewal for enhanced security
D.
Temporarily disabling SSL encryption while waiting for the new certificate to be issued
B.
Ensuring that the new SSL certificate is renewed and installed before the expiration of the current certificate
Explanation:
Why B is Correct?
Certificate expiration causes immediate service disruption (browser warnings, connection failures).
Renewing before expiration ensures uninterrupted HTTPS access to Tableau Server.
Tableau’s SSL Certificate Guide mandates proactive renewal.
Why Other Options Are Incorrect?
A. Same specifications: New certificates may require updates (e.g., stronger key lengths, SANs).
C. Switching protocols: TLS versions (e.g., 1.2 → 1.3) are configured separately from certificates.
D. Disabling SSL: Creates security risks—always use a valid certificate..
Reference:
NIST IR 7966: Recommends certificate lifecycle management to prevent outages.
Final Note:
B is the only fail-safe approach. Letting certificates expire (or disabling SSL) risks downtime and security breaches.