Loading...

XML

Word

Printable

Type: Feature
Resolution: Done
Priority: Major
Fix Version/s: openshift-4.17
Affects Version/s: None
Component/s: etcd
Labels:

Work Type:
Strategic Product Work
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Parent Link:
OCPSTRAT-714Provide Detailed Administrative Control of all OCP Certs and Keys
Hierarchy Progress Bar:

0% To Do, 0% In Progress, 100% Done
Size:
XL
Target Version:

openshift-4.17

Risk Score:
0

Discussion Needed:

Program Call

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

PX Priority Data:
PX Technical Impact:
PX Impact Range:
PX Scheduling Request:
PX Review Complete:

Intelligence Requested:
Market:

Feature Overview (aka. Goal Summary)

Provide a way to automatically recover a cluster with expired etcd server and peer certificates.

Goals (aka. expected user outcomes)

A cluster has etcd serving, peer, and serving-metrics certificates that are expired. There should be a way to either trigger certificate rotation or have a process that automatically does the rotation.

Requirements (aka. Acceptance Criteria):

Deliver rotation and recovery requirements from OCPSTRAT-714

is cloned by

OCPSTRAT-1104 [etcd] manual rotation of etcd signer certs when the cluster is still online

Closed

relates to

ETCD-510 Automatic recovery from expired server and peer certs

Closed

Assignee:: Ramon Acedo

Reporter:: William Caban

Contributors:: Haseeb Tariq

QA Contact:: Wei Sun

Doc Contact:: Matthew Werner

Architect:: David Eads

Product Manager:: William Caban

Product Operations Engineering Contact:: Eric Rich

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/01/03 1:57 PM

Updated:: 2024/11/22 12:35 AM

Resolved:: 2024/04/12 2:01 AM

Details

Description

Feature Overview (aka. Goal Summary)

Goals (aka. expected user outcomes)

Requirements (aka. Acceptance Criteria):

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates