Document URL: https://docs.openshift.com/container-platform/3.11/install_config/persistent_storage/persistent_storage_glusterfs.html#considerations-volume-security Section Number and Name: N/A Describe the issue: As per BZ#1566609, "In OCS 3.x, the supported way for achieving access control to volumes is enabling I/O encryption for the respective volumes, as documented in the OCS Operations Guide[1]. Further options will be considered in OCS 4." Suggestions for improvement: Please include a note strongly recommending the customers to enable SSL encryption by default as stated in OCS Operations Guide[1] because as confirmed via BZ#1566609, the use of non encrypted volumes could be a security issue. Additional information: [1] - https://access.redhat.com/documentation/en-us/red_hat_openshift_container_storage/3.11/html-single/operations_guide/index#chap-Documentation-Red_Hat_Gluster_Storage_Container_Native_with_OpenShift_Platform-Enabling_Encryption
Hi all, any update here? Thanks and regards.
Hi all, could be possible to obtain some update here? thks.
Hi Vikram, could be possible to obtain an initial evaluation here? thanks.
Added a note that users should use SSL encryption in OCS 3.11. PR 21749: https://github.com/openshift/openshift-docs/pull/21749 Moving to QA for verification.
PR merged and verified live: https://docs.openshift.com/container-platform/3.11/install_config/persistent_storage/persistent_storage_glusterfs.html#considerations-volume-security Closing BZ.