-
Feature Request
-
Resolution: Unresolved
-
Major
-
None
-
openshift-4.14, openshift-4.15, 4.16
-
False
-
None
-
False
-
Not Selected
-
-
-
1. Proposed title of this feature request
- Allow deploying cert-manager components in a high available configuration
2. What is the nature and description of the request?
- The cert-manager operator currently does not allow to change the number of replicas for the components it manages, and each component only runs 1 replica. We should be able to control the number of replicas in order to deploy these controllers in a highly available configuration.
- According to the cert-manager's best practices documentation, the recommendation for a production environment is to run 2 replicas of the controller and the cainjector, and at least 3 replicas of the webhook.
cert-manager HA documentation - https://cert-manager.io/docs/installation/best-practice/#high-availability
3. Why does the customer need this? (List the business requirements here)
- To have cert-manager components in a high available configuration. The customer run into a scenario where the webhook was stuck, cert-manager fell into a degraded state, and it caused other issues for things that relied on cert-manager
4. List any affected packages or components.
- cert-manager
