Uploaded image for project: 'OpenShift Top Level Product Strategy'
  1. OpenShift Top Level Product Strategy
  2. OCPPLAN-7572

Ability to use a KMS server for key rotation for etcd encyrption.

XMLWordPrintable

    • False
    • False
    • Not Set
    • No
    • Not Set
    • Not Set
    • Not Set
    • 0
    • 0% 0%
    • Undefined

      Hello Team,

      In OpenShift 3.11 we had an option to manually rotate key for etcd encryption when enabled for it by having a `EncryptionConfig` file which used to get mentioned in the `master-config.yaml` file.

      In OpenShift 4.x we do not have any resource with name `EncryptionConfig` and hence enable to manually rotate the keys.

      Can we have the ability to manually rotate the keys for etcd when the encryption is enabled.
      Ability to use a KMS server to rotate the keys and to alter the encryption configuration like we had in 3.11.

            Unassigned Unassigned
            rhn-support-ansverma Anshul Verma
            Votes:
            0 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated: