Uploaded image for project: 'OpenShift Container Platform (OCP) Strategy'
  1. OpenShift Container Platform (OCP) Strategy
  2. OCPSTRAT-99

Introduce Certificate Management & PKI for HyperShift

XMLWordPrintable

    • False
    • False
    • OCPPLAN-9733HyperShift: Central Control-Plane Management (aka Hosted Control Planes)
    • 0% To Do, 0% In Progress, 100% Done
    • Undefined
    • 0
    • 0

      Feature Overview

      Certificate Management was and stays an important topic especially with HyperShift's externalized control-plane model. In a typical OpenShift / Kubernetes clusters, certificates can serve two purposes:

      • Kubernetes components
      • Workloads

       

      With HyperShift's architecture, the components that manage/rotate certificates are likely going to be different.t

      Goal(s)

      • Define a method for certificate management both for control-plane and workloads.
      • Identify how and what certificates need rotations?
      • Understand the implications on the HyperShift API.

      Note: Sync with the API-server team is likely needed.

       

       

      References

      https://docs.google.com/document/d/1iEs6qGmi68NP5OqMkaSeZmN5CIXmHDt2ltQ1yIko7q4/edit 

        1. image-2021-01-18-11-40-47-288.png
          image-2021-01-18-11-40-47-288.png
          42 kB

            Unassigned Unassigned
            azaalouk Adel Zaalouk
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: