1. Proposed title of this feature request
Manually Trigger ServiceCA to Cycle Certificates

2. What is the nature and description of the request?
The ServiceCA is used to manage a number of the certificate authorities used thoughout the OpenShift cluster. These certificates are managed by the cluster and do not provide the ability to trigger certificate renewal (with removal of the older CA's from the trusted bundle)
In the event of a security breach, this means that there is no way to revoke previously-signed or trusted certificates from OpenShift and the cluster will need to be reprovisioned.
This also means that certificates cannot be re-cycled by the cluster-administrator as a precautionary measure.

3. Why does the customer need this? (List the business requirements here)
Security concerns with the cluster

4. List any affected packages or components.
Openshift ServiceCA Operator