Update modules/ROOT/pages/security/ssl-framework.adoc

tonbut · NataliaIvakina · web-flow · commit 4abe088bb54d · 2025-03-20T14:32:16.000Z
Co-authored-by: NataliaIvakina &lt;82437520+NataliaIvakina@users.noreply.github.com&gt;
diff --git a/modules/ROOT/pages/security/ssl-framework.adoc b/modules/ROOT/pages/security/ssl-framework.adoc
@@ -1143,7 +1143,9 @@ New certificates need to be copied to all cluster members as required.
 dbms.security.reloadTLS()
 ----
 
-. New settings will take effect immediately, however existing connections will not be pre-emptively terminated.
+. New settings will take effect immediately; however, existing connections will not be preemptively terminated.
+This means that while new connections will use new certificates, the existing connections (established before the update) will continue using the old certificates.
+Even if a certificate expires, active connections remain unaffected because the certificates are only used during the initial connection handshake.
 
 . Verify that the intra-cluster communication is still encrypted using external tooling, such as Nmap, described in <<ssl-cluster-config, Configuring SSL for intra-cluster communications>>.
  
