Uploaded image for project: 'OpenShift Cloud Credential Operator'
  1. OpenShift Cloud Credential Operator
  2. CCO-601

Document Bound Service Account Signer Key Rotation

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Azure workload identity Service Account Signer Key Rotation
    • False
    • None
    • False
    • Not Selected
    • To Do
    • OCPSTRAT-1727 - Signing keys rotation with Openshift Azure Entra Workload ID enabled clusters
    • OCPSTRAT-1727Signing keys rotation with Openshift Azure Entra Workload ID enabled clusters
    • 75% To Do, 0% In Progress, 25% Done
    • S

      As an OpenShift Administrator, I need to ensure that I rotate signing keys for self-managed short-term credentials enabled clusters (Openshift Azure Entra Workload ID, GCP Workload Identity, AWS STS) to comply with PCI-DSS v4 (see #8 on life cycle management) and NIST (see PCI “Tokenization Product Security Guidelines”) rules.

              jstuever@redhat.com Jeremiah Stuever
              jstuever@redhat.com Jeremiah Stuever
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: