133f037b5c
Update documentation regarding the REST API / GUI certificate. Fix link. Story: 2009811 Task: 50152 Change-Id: Ic6b07200df9e1664b1310be9e0799a338f9ac586 Signed-off-by: Elisamara Aoki Goncalves <elisamaraaoki.goncalves@windriver.com>
1.4 KiB
Configure REST API Applications and Web Administration Server certificate
provides support for secure HTTPS external connections used for REST API application endpoints (Keystone, Barbican and ) and the web administration server.
During installation, the Platform Issuer
(system-local-ca) will automatically issue a certificate
used to secure access to the REST API and to the Web Server GUI. This
allows the system to have HTTPS access enabled from the bootstrap to the
services. This certificate will be stored in a K8s secret in namespace
deployment, named
system-restapi-gui-certificate. It will be managed by
cert-manager, renewed upon expiration and the required services
restarted automatically.
After bootstrap, this certificate's fields can be updated using the
procedure migrate-platform-certificates-to-use-cert-manager-c0b1727e4e5d.
The certificate will be managed by cert-manager (auto renewed upon
expiration).
The certificate will be anchored by system-local-ca's
Root . For more information, refer to system-local-ca-issuer-9196c5794834.