AgentSkillsCN

mtls-configuration

基于API优先的架构设计与并行实现策略,确保同一功能在Web、移动端与桌面端之间的一致性部署与交付。

SKILL.md
--- frontmatter
version: 4.1.0-fractal
name: mtls-configuration
description: Configure mutual TLS (mTLS) for zero-trust service-to-service communication. Use when implementing zero-trust networking, certificate management, or securing internal service communication.

mTLS Configuration

Comprehensive guide to implementing mutual TLS for zero-trust service mesh communication.

Do not use this skill when

  • The task is unrelated to mtls configuration
  • You need a different domain or tool outside this scope

Instructions

  • Clarify goals, constraints, and required inputs.
  • Apply relevant best practices and validate outcomes.
  • Provide actionable steps and verification.
  • If detailed examples are required, open resources/implementation-playbook.md.

Use this skill when

  • Implementing zero-trust networking
  • Securing service-to-service communication
  • Certificate rotation and management
  • Debugging TLS handshake issues
  • Compliance requirements (PCI-DSS, HIPAA)
  • Multi-cluster secure communication

Core Concepts

🧠 Knowledge Modules (Fractal Skills)

1. 1. mTLS Flow

2. 2. Certificate Hierarchy

3. Template 1: Istio mTLS (Strict Mode)

4. Template 2: Istio Destination Rule for mTLS

5. Template 3: Cert-Manager with Istio

6. Template 4: SPIFFE/SPIRE Integration

7. Template 5: Linkerd mTLS (Automatic)

8. Do's

9. Don'ts