pg_stat_ssl View (Continued) and pg_stat

<type>text</type> </para> <para> Name of SSL cipher in use, or NULL if SSL is not in use on this connection </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>bits</structfield> <type>integer</type> </para> <para> Number of bits in the encryption algorithm used, or NULL if SSL is not used on this connection </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>client_dn</structfield> <type>text</type> </para> <para> Distinguished Name (DN) field from the client certificate used, or NULL if no client certificate was supplied or if SSL is not in use on this connection. This field is truncated if the DN field is longer than <symbol>NAMEDATALEN</symbol> (64 characters in a standard build). </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>client_serial</structfield> <type>numeric</type> </para> <para> Serial number of the client certificate, or NULL if no client certificate was supplied or if SSL is not in use on this connection. The combination of certificate serial number and certificate issuer uniquely identifies a certificate (unless the issuer erroneously reuses serial numbers). </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>issuer_dn</structfield> <type>text</type> </para> <para> DN of the issuer of the client certificate, or NULL if no client certificate was supplied or if SSL is not in use on this connection. This field is truncated like <structfield>client_dn</structfield>. </para></entry> </row> </tbody> </tgroup> </table> </sect2> <sect2 id="monitoring-pg-stat-gssapi-view"> <title><structname>pg_stat_gssapi</structname></title> <indexterm> <primary>pg_stat_gssapi</primary> </indexterm> <para> The <structname>pg_stat_gssapi</structname> view will contain one row per backend, showing information about GSSAPI usage on this connection. It can be joined to <structname>pg_stat_activity</structname> or <structname>pg_stat_replication</structname> on the <structfield>pid</structfield> column to get more details about the connection. </para> <table id="pg-stat-gssapi-view" xreflabel="pg_stat_gssapi"> <title><structname>pg_stat_gssapi</structname> View</title> <tgroup cols="1"> <thead> <row> <entry role="catalog_table_entry"><para role="column_definition"> Column Type </para> <para> Description </para></entry> </row> </thead> <tbody> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>pid</structfield> <type>integer</type> </para> <para> Process ID of a backend </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>gss_authenticated</structfield> <type>boolean</type> </para> <para> True if GSSAPI authentication was used for this connection </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition"> <structfield>principal</structfield> <type>text</type> </para> <para> Principal used to authenticate this connection, or NULL if GSSAPI was not used to authenticate this connection. This field is truncated if the principal is longer than <symbol>NAMEDATALEN</symbol> (64 characters in a standard build). </para></entry> </row> <row> <entry role="catalog_table_entry"><para role="column_definition">

This section continues the description of the `pg_stat_ssl` view, detailing the `client_serial` and `issuer_dn` columns, which provide information about the client certificate. It then introduces the `pg_stat_gssapi` view, which provides information about GSSAPI usage for each backend. The `pg_stat_gssapi` view can be joined with `pg_stat_activity` or `pg_stat_replication` views on the `pid` column, and the view's columns, including `pid`, `gss_authenticated`, and `principal`, are described.