Bugzilla (bugzilla.redhat.com) will be under maintenance for infrastructure upgrades and will not be available on July 31st between 12:30 AM - 05:30 AM UTC. We appreciate your understanding and patience. You can follow status.redhat.com for details.
Bug 1576074 - [DOCS] Add more context about certificates and CAs
Summary: [DOCS] Add more context about certificates and CAs
Keywords:
Status: CLOSED DEFERRED
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Documentation
Version: 3.9.0
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: ---
: 3.9.z
Assignee: Kathryn Alexander
QA Contact: Xiaoli Tian
Vikram Goyal
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2018-05-08 17:47 UTC by Kathryn Alexander
Modified: 2019-11-20 18:52 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2019-11-20 18:52:14 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Kathryn Alexander 2018-05-08 17:47:58 UTC 
Document URL: https://docs.openshift.com/container-platform/3.9/security/securing_container_platform.html#security-platform-cert-mgmt

Section Number and Name: Managing Certificates for the Platform

Describe the issue: Some context is missing from the descriptions of the certificates. 

Suggestions for improvement: Provide more information about how the CA provides certificates for nodes and containers. Be clear how users can add their own CA/root authority to the certificate flow.

Additional information:
Comment 3 Stephen Cuppett 2019-11-20 18:52:14 UTC 
OCP 3.6-3.10 is no longer on full support [1]. Marking CLOSED DEFERRED. If you have a customer case with a support exception or have reproduced on 3.11+, please reopen and include those details. When reopening, please set the Target Release to the appropriate version where needed.

[1]: https://access.redhat.com/support/policy/updates/openshift
Note You need to log in before you can comment on or make changes to this bug.