Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-99

Introduce Certificate Management & PKI for HyperShift

XMLWordPrintable

    • BU Product Work
    • False
    • False
    • OCPPLAN-9733HyperShift: Central Control-Plane Management (aka Hosted Control Planes)
    • 0% To Do, 0% In Progress, 100% Done
    • Undefined
    • 0

      Feature Overview

      Certificate Management was and stays an important topic especially with HyperShift's externalized control-plane model. In a typical OpenShift / Kubernetes clusters, certificates can serve two purposes:

      • Kubernetes components
      • Workloads

       

      With HyperShift's architecture, the components that manage/rotate certificates are likely going to be different.t

      Goal(s)

      • Define a method for certificate management both for control-plane and workloads.
      • Identify how and what certificates need rotations?
      • Understand the implications on the HyperShift API.

      Note: Sync with the API-server team is likely needed.

       

       

      References

      https://docs.google.com/document/d/1iEs6qGmi68NP5OqMkaSeZmN5CIXmHDt2ltQ1yIko7q4/edit 

        1. image-2021-01-18-11-40-47-288.png
          image-2021-01-18-11-40-47-288.png
          42 kB

              Unassigned Unassigned
              azaalouk Adel Zaalouk
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: