# System DB

<figure><img src="/files/tVNnRbfMQgU5YFpAenVI" alt=""><figcaption></figcaption></figure>

This page within the L11WAAP console displays the current System Database. The parameters contained here are used throughout the system.

Most of these settings are displayed for informational purposes only. In some cases, they can reflect features of the system not currently in use.&#x20;

The following features are available for configuration by customer admins:

* [Enabling certificates for mTLS](#enabling-certificates-for-mtls)
* [Limiting Log Exporter data lengths](#limiting-log-exporter-data-lengths)

Except for these, it is not recommended that admins attempt to edit settings within System DB. If you would like assistance, [contact support](/support.md).

## Enabling certificates for mTLS

By default, the Link11 WAAP interface does not offer management of certificates for mTLS. These features can be enabled through the System DB.

<figure><img src="/files/IKhP8uDvzZxUw8HzXLO9" alt=""><figcaption></figcaption></figure>

To do this, begin by selecting the `system` namespace for editing, then select `feature-toggle`.

As shown above, this contains three parameters:

* `ssl-client-to-v5-client-ca-certificate`, for mTLS between Link11 WAAP and end users.
* `ssl-server-to-backend-mtls-certificate`, for mTLS between Link11 WAAP and the customer origin (a certificate for customer origins to validate L11WAAP).
* `ssl-server-to-backend-ca-certificate`, for mTLS between Link11 WAAP and the customer origin (a certificate for L11WAAP to validate customer origins).

Set the appropriate parameter(s) to `true`, save the changes, and then [publish](/console-walkthrough/system/publish-changes.md).

* If `ssl-client-to-v5-client-ca-certificate`was activated, the *CA Certificates* tab will appear on the [Certificates](/console-walkthrough/sites/ssl/certificates.md) page. After being added there, certificates will be available for use in [Server Groups](/console-walkthrough/sites/server-groups.md#ca-certificate).
* If `ssl-server-to-backend-mtls-certificate`was activated, the *Server-to-Backend mTLS Certificates* tab will appear on the [Certificates](/console-walkthrough/sites/ssl/certificates.md) page. After being added there, certificates will be available for use in [Backend Services](/console-walkthrough/sites/backend-services.md).
* If `ssl-server-to-backend-ca-certificate` was activated, the *Server-to-Backend CA Certificates* tab will appear on the [Certificates](/console-walkthrough/sites/ssl/certificates.md) page. After being added there, certificates will be available for use in [Backend Services](/console-walkthrough/sites/backend-services.md).

The following can be helpful in understanding the names and usage of the various certificates:

<figure><img src="/files/sML8VW5gUXNLj3GPcIFA" alt=""><figcaption></figcaption></figure>

## Limiting Log Exporter data lengths

[Log Exporters](/console-walkthrough/system/log-exporters.md) stream traffic data to external destinations. Using the System DB, admins can limit the maximum lengths of various data included in the messages.

<figure><img src="/files/tAQjYS2WZXJq7fMd6TX8" alt=""><figcaption></figcaption></figure>

This is done by selecting the `system` namespace for editing, then selecting `log-exporter`. The values shown above will be available for editing.

After editing any of these parameters, save the changes and then publish.

The `max_characters` settings are the allowable lengths for the various data fields.

* Each setting is specified as the maximum number of characters. Data exceeding those lengths will be truncated.&#x20;
* The `encoded_fields` limit applies to all fields within [encoded requests](/console-walkthrough/system/log-exporters.md#include-encoded-request-data), i.e. to each header, cookie, and argument.

The `request_data_max_parameters_num` limit defines the maximum number of parameters in the encoded data. For example, when this is set to `100`, then the following limits are enforced:

1. The maximum number of POST data parameters is 100
2. The maximum number of GET data parameters is 100
3. The maximum number of header data parameters is 100

{% hint style="info" %}
The numbers shown in the screenshot above are the default values. If for some reason the `log-exporter` settings are deleted from System DB, these values will be used.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://waap.docs.link11.com/console-walkthrough/system/system-db.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.