Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Won't Do
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: cert-manager
Labels:
- rfe-rejected-to-wontdo

Target Version:
None
Activity Type:
Product / Portfolio Work
Status Summary:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Products:
None
Hierarchy Progress Bar:
None
Parent Link:
OCPSTRAT-28Secure the Platform

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Review Complete:
None
PX Impact Score:
None
PX Impact Range:
None
PX Priority Data:
None
PX Technical Impact:
None
PX Technical Impact Notes:
None
PX Scheduling Request:
None

Customer wants to manage their own certificates for the API server and Ingress with CMPv2 protocol.

Given the fact that cert-manager is planning to support external endpoint certs (such as ingress and API server), cert-manager could be used for this. However, cert-manager issuers don't support CMPv2.

As a solution, Red Hat proposed the customer the following option : to develop their own issuer (which speaks CMPv2) that can be used with cert-manager.

Customer has finally decided to invest in their own issuer, which they will develop upstream.
The request to Red Hat is to commit to support such issuer downstream.

depends on

OCPSTRAT-212 Expand cert-manager to manage API server and ingress certs

Closed

is duplicated by

RFE-3203 CMPv2 support for certificate management in OCP

Closed

Assignee:: Nick Png

Reporter:: Anjali Telang

Need Info From:: None

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2023/05/22 12:01 PM

Updated:: 2025/07/06 1:11 PM

Resolved:: 2023/08/09 12:06 PM

Target start:: None

Target end:: None

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates