Kubernetes cluster certificate rotation
Bug #1834685 reported by
Brent Rowsell
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
High
|
David Sullivan |
Bug Description
Brief Description
-----------------
The Kubernetes internal cluster certificate currently is not set up to rotate and will expire after a year.
Rotation needs to be enabled and the expiry set up for one month vs. one year.
Severity
--------
Major for long term deployments
Expected Behavior
------------------
Rotation needs to be enabled and the expiry set up for 1 month vs. 1 year.
Actual Behavior
----------------
The certificate is not rotated and will expire in one year
Reproducibility
---------------
100%
System Configuration
-------
Any configuration
Branch/Pull Time/Commit
-------
any build with containerization
description: | updated |
Changed in starlingx: | |
assignee: | Bart Wensley (bartwensley) → David Sullivan (dsullivanwr) |
To post a comment you must log in.
Marking as stx.2.0 - the k8s cluster will shutdown after the certificate expires