8314d46f72
Update documentation regarding the Docker Registry certificate. Remove deprecated section Local Registry Server Certificates. Fix ref link. Story: 2009811 Task: 50152 Change-Id: Id6b3469419b5d1a3a195795535aa496334dec211 Signed-off-by: Elisamara Aoki Goncalves <elisamaraaoki.goncalves@windriver.com>
23 lines
983 B
ReStructuredText
23 lines
983 B
ReStructuredText
|
|
.. idr1582032622279
|
|
.. _installing-updating-the-docker-registry-certificate:
|
|
|
|
==========================================
|
|
Install/Update Local Registry Certificates
|
|
==========================================
|
|
|
|
During installation, the Platform Issuer (``system-local-ca``) will
|
|
automatically issue a certificate used to secure access to the Local Docker
|
|
Registry API. After bootstrap, this certificate's fields can be updated using
|
|
the procedure
|
|
:ref:`migrate-platform-certificates-to-use-cert-manager-c0b1727e4e5d`. The
|
|
certificate will be managed by cert-manager (auto renewed upon expiration).
|
|
|
|
This certificate will be stored in a Kubernetes |TLS| secret in namespace
|
|
``deployment``, named ``system-registry-local-certificate``. It will be managed
|
|
by cert-manager, renewed upon expiration and the required services restarted
|
|
automatically.
|
|
|
|
The certificate will be anchored by system-local-ca's Root |CA|. For more
|
|
information, refer to
|
|
:ref:`system-local-ca-issuer-9196c5794834`. |