Hide Forgot
Document URL: https://docs.openshift.com/container-platform/3.3/dev_guide/secrets.html#service-serving-certificate-secrets Describe the issue: Usage information on this feature (currently Technology Preview in OCP 3.3) is sparse. Suggestions for improvement: Needs more information around how the certificate is generated and maintained so people know what they are using. More information on how OCP life cycles the certificate and what AES/SHA it uses. Additional information: SignatureAlgorithm: x509.SHA256WithRSA, Feature is intended to support complex middleware apps that need out-of-the-box certificates. It's an x509 with the same settings as the server certs generated by the admin tooling for nodes and masters. To rotate, delete the cert and a new one will be created.
Work in progress: https://github.com/openshift/openshift-docs/pull/4036
Doc LGTM, so will verify this issue.
Commits pushed to master at https://github.com/openshift/openshift-docs https://github.com/openshift/openshift-docs/commit/077befff403bcefb38225b800f673bfb56e0d9e7 Bug 1382153, Added more details to the Service Serving Certificate Secrets section https://github.com/openshift/openshift-docs/commit/d97ecd2b4b1302505783ae6f7b693f9714a6a143 Merge pull request #4036 from ahardin-rh/improve-service-serving-certs-secrets Bug 1382153, Added more details to the Service Serving Certificate Secrets section
Content is published: https://access.redhat.com/documentation/en-us/openshift_container_platform/3.4/html/developer_guide/dev-guide-secrets#service-serving-certificate-secrets