# Using TLS ## What You'll Need Before configuring TLS, ensure you have: * **Server certificate** in PEM format (text-based, not binary) * **Private key** in PEM format and **unencrypted** (no password protection) * **Certificate chain** (if using certificates from a CA with intermediates) * For mutual TLS: **Client CA certificate** to verify client certificates {% hint style="info" %} Bindplane collectors use the OpenTelemetry Collector's `configtls` package for TLS configuration. For complete technical details, see the [OpenTelemetry Collector TLS Configuration documentation](https://github.com/open-telemetry/opentelemetry-collector/blob/main/config/configtls/README.md). {% endhint %} {% hint style="warning" %} **Critical Format Requirements:** * Only PEM format is supported (DER, PKCS#12/PFX are NOT supported) * Private keys must be unencrypted (password-protected keys will NOT work) * See [Certificate Requirements](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/requirements) for detailed format requirements {% endhint %} ## Quick Navigation ### Getting Started **New to TLS?** Start with the [Quick Start Guide](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/quick-start) to get basic TLS configured in minutes. **Preparing certificates?** Review [Certificate and Key Requirements](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/requirements) to ensure your certificates are in the correct format. ### Configuration Guides **Configuring TLS between collectors and gateways?** See the [Gateway TLS Guide](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/gateway-tls) for a step-by-step walkthrough. This guide also applies to OTLP Source and Destination, which share the same TLS configuration. **Configuring TLS on receivers?** See the [Configuration Guide](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/configuration) for examples and parameter reference. **Setting up mutual TLS (mTLS)?** Follow the [Mutual TLS Guide](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/mutual-tls) for two-way authentication. ### Troubleshooting **Having issues?** Jump to the [Troubleshooting Guide](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/troubleshooting) for common problems and solutions. **Need to verify your setup?** See [Testing and Verification](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/reference/testing-verification) for OpenSSL commands and validation steps. **Wrong certificate format?** Check [Certificate Conversion](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/reference/certificate-conversion) for format conversion instructions. ### Learning Resources **Want to understand TLS concepts?** See [TLS Concepts](https://docs.bindplane.com/how-to-guides/security-and-tls/using-tls/reference/tls-concepts) for background on certificates, keys, and trust. ### Related Resources * [OpenTelemetry Collector TLS Configuration](https://github.com/open-telemetry/opentelemetry-collector/blob/main/config/configtls/README.md) * [Bindplane TCP Source Documentation](https://docs.bindplane.com/integrations/sources/tcp) * [Bindplane Syslog Source Documentation](https://docs.bindplane.com/integrations/sources/syslog)