Knowledge Base

Enclave Documentation

Knowledge Base

Please note: We are actively working to develop and improve the content in this part of our documentation. If you have a question which our documentation doesn't currently address please contact us by emailing [email protected].

  • Certificate lifetime management and best practice
    Certificates should be issued with validity periods matching the expected lifetime of enrolling systems — hours, days, years, or in perpetuity. This KB article explains how to effectively use short-lived certificates to enforce auto-expiring connections.
  • How to configure DNS forwarding on Linux
    DNS forwarding modifies the local name server search order allowing Enclave to intercept and respond to respond to DNS queries for active connections, enabling systems to connect to network peers by name, as well as by IP address.
  • What are the 100.64.x.x IP addresses
    100.64.0.0/10 is the default range from which Enclave allocates IP addresses to devices and systems because it is not for use on private networks or the public Internet meaning the risk of IP address conflicts with existing infrastructure is extremely low.