Creating a CA Settings
Create CA Settings enables DevOps/CloudOps teams to create and configure CA Settings for their cluster as a Kubernetes Custom Resource Definition (CRD). This CA Settings CRD will reference the PKI policy defined for their specific cluster.
Prerequisites:
-
Ensure CA integration is completed.
-
Ensure you configured organization PKI standards as CA Policy.
-
Ensure the Group is created.
-
Ensure Cluster Policy is created.
To create a CA Settings:
-
Go to menu > KUBE+ >
CLUSTER PKI > Issuer CA.
On the Issuer CA page, the created Issuer CAs are displayed, if any.
-
Click
.
-
On the Create CA Settings page, enter/select the policy
information fields in the General Information section.
Table 1. General Information - Field and Description Table Field Description CA Settings Name* Enter a unique name to represent the CA settings for one or more clusters. Alpha numerals and special characters (-) and (_) are allowed.
Select Policy* Select a required Cluster Policy associated with the cluster. Group Name* Select a Certificate Group and the respective CA Issuer associated with the Group. Type* Choose a specific CA Account and the specific profiles or attributes required to send the certificate signing requests to the Certificate Authority. *: Mandatory field -
On the Create CA Settings page, enter/select the policy
information fields in the Certificate Authority Setting
section.
Table 2. Certificate Authority Setting - Field and Description Table Field Description Certificate Authority Select a preferred certificate authority from the dropdown list. CA Account Select a preferred CA Account from the dropdown list. Connector Name Select preferred clusters from the dropdown list. Category* Select a certificate group from the dropdown list. *: Mandatory field -
Click Add.
CA Setting is created.