Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-1740

Quay Operator guide should mention all required DNS Name in SANS when use custom TLS cert

XMLWordPrintable

    • False
    • False
    • Undefined

      Description:

      This is a Document issue in quay v3.4 Operator guide, when use custom TSL cert for quay, the cert need to have 4 DNS Name in "Subject Alternative Names", without "<quayregistry-name>.<OCP-Router canonical hostname>", the validation will be failed, see the screenshot below.

      • <quayregistry-name>-quay-app
      • <quayregistry-name>-quay-app.<quayregistry-namespace>.svc
      • <quayregistry-name>-quay-app.<quayregistry-namespace>.svc.cluster.local

      Docs: https://access.redhat.com/documentation/en-us/red_hat_quay/3.4/html-single/deploy_red_hat_quay_on_openshift_with_the_quay_operator/index#customizing_external_access_to_the_registry 

      Quay custom SSL cert require 4 DNS 

        1. image-2021-03-17-16-59-11-041.png
          292 kB
          luffy zhang

              rhn-support-gmcgoldr Gabriel McGoldrick
              lzha1981 luffy zhang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: