-
Epic
-
Resolution: Unresolved
-
Major
-
None
-
None
-
AWS STS Service Account Signer Key Rotation
-
BU Product Work
-
False
-
None
-
False
-
Not Selected
-
To Do
-
OCPSTRAT-1523 - Service Account Signer Key Rotation
-
OCPSTRAT-1523Service Account Signer Key Rotation
-
100% To Do, 0% In Progress, 0% Done
Enable support for rotating service account signer keys for OIDC issuer for customers who configure AWS ManualMode w/ STS option.
Ideally provide an automated tool to perform the rotation. If not possible (due to resource constraints or other limitations), then provide a tested and supported procedure that is published in OpenShift docs.
Note: There's previous upstream documented procedure that has not yet been tested.
- is related to
-
CCO-494 [Spike] Document how to rotate service accounts on GCP
- New
- links to