1. Proposed title of this feature request Configurable minimum TLS version 3. What is the nature and description of the request? As of OCP 3.4, the minimum permitted TLS version is 1.2. This is good for security. While 1.2 should definitely be default, customer would like to be able to configure this to a lower value if desired. 4. Why does the customer need this? (List the business requirements here) Customer has an external loadbalancer (NetScaler) that does not have support for TLS 1.2 so is unable to be used to communicate to masters. 5. How would the customer like to achieve this? (List the functional requirements here) Instead of 1.2 being minimum, have minimum be configurable with 1.2 as default minimum. 7. Is there already an existing RFE upstream or in Red Hat bugzilla? Not that I see.
This was cloned so that it could be immediately fixed on the 3.4 codebase. Jordan also committed it to the 3.5 codebase so I'm closing this CURRENTRELEASE.