Tarantool CE/EE Documentation portal logo
Support
Updated at July 17, 2026   02:08 PM

Integrity check

TCM supports the integrity check mechanism. The integrity check mechanism in TCM verifies the digital signature of centralized configuration files. It ensures that TCM only applies configurations that are signed with a trusted private key.

This mechanism allows TCM to:

  • Update the configuration with integrity check support
  • Detect unauthorized changes in centralized configuration

Configure integrity check

Configuration parameters

Parameter

Description

Type

Default

security.integrity-check

Enables signature validation

bool

false

security.signature-private-key-file

Path to the private key for signing configuration

string

""

Example configuration

Integrity check can be enabled directly in the TCM configuration file:

# tcm.yamlsecurity:    integrity-check: true    signature-private-key-file: /etc/tcm/private_key.pem