Difference between revisions of "Kube-root-ca.crt configMap"

Revision as of 18:19, 27 March 2023

https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster/

Note:
Even though the custom CA certificate may be included in the filesystem (in the ConfigMap kube-root-ca.crt), you should not use that 
certificate authority for any purpose other than to verify internal Kubernetes endpoints. An example of an internal Kubernetes endpoint is the Service named kubernetes in the default namespace.

If you want to use a custom certificate authority for your workloads, you should generate that CA separately, and distribute its CA certificate using a ConfigMap that your pods have access to read.

TLS, mTLS: OpenSSL, LibreSSL, BoringSSL, WolfSSL, X.509, .pem, SNI, CT, OCSP, Mbed TLS, ALPN, your connection is not private, SSL Certificate Checker, Wildcard certificate, JA3 fingerprint, sslcan, TLS inspection
Kubernetes cert-manager, kube-root-ca.crt

Revision as of 18:16, 27 March 2023 (edit) Newworld3 (talk \| contribs) Tags: Mobile web edit, Mobile edit ← Older edit		Revision as of 18:19, 27 March 2023 (edit) (undo) Newworld3 (talk \| contribs) Tags: Mobile web edit, Mobile edit Newer edit →
Line 10:		Line 10:

	* {{TLS}}		* {{TLS}}
−	* {{K8s}}	+	* {{K8s TLS}}

Difference between revisions of "Kube-root-ca.crt configMap"

Revision as of 18:19, 27 March 2023

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools