Loading...

XML

Word

Printable

Type: Epic
Resolution: Done
Priority: Critical
Fix Version/s: OSSM 2.4.0
Affects Version/s: None
Component/s: Maistra
Labels:
None

Epic Name:
Integration with cert-manager
Blocked:
False
Ready:
False
5-Acks Check:

doc_ack
Affects:

Documentation (Ref Guide, User Guide, etc.), Release Notes
Epic Status:
Done
Hierarchy Progress Bar:

0% To Do, 0% In Progress, 100% Done
Release Note Text:
undefined
Target Version:

OSSM 2.4.0

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

How to integrate cert-manager with OSSM:

Customer want to use cert-manager as an issuer
they wont use the self-signed certificates that the mesh uses by default

We need a own certificate provider that generates certificate
so cu configured in this way

certificateAuthority:
  type: Custom
  custom:
    address: cert-manager-istio-csr.cert-manager.svc:443

However, istiod still uses a self-signed certificated for the communication from gateway – virtual-service.
They want istio itself also request a certificate from cert-manager.
However, the customer achieved the integration but wants to here from engineer side best and possible way.....
IBM P/Z platforms are not supported by the Cert-Manager Operator.

is documented by

OSSM-3180 [DOC] Integration of cert-manager with Service-Mesh

Closed

relates to

OSSM-1330 Allow specifying secret as pilot server cert when using CertificateAuthority: Custom

Closed

Assignee:: Jacek Ewertowski

Reporter:: Eswar Vadla (Inactive)

Contributors:: Gwynne Monahan, Praneeth Bajjuri

Votes:: 2 Vote for this issue

Watchers:: 28 Start watching this issue

Created:: 2021/08/18 1:55 PM

Updated:: 2024/11/04 7:32 PM

Resolved:: 2023/05/31 9:26 PM