TLS certs discussion w/ SecOps/ADMS

BCDevOps / developer-experience

This repository is used to track all work for the BCGov Platform Services Team (This includes work for: 1. Platform Experience, 2. Developer Experience 3. Platform Operations/OCP 3)

Apache License 2.0

8 stars 17 forks source link

TLS certs discussion w/ SecOps/ADMS #4626

Closed NickCorcoran closed 1 month ago

NickCorcoran commented 4 months ago

Describe the issue Current renewal process w/ Certbot is broken due to ACME v2 not being supported. Requires discussion w/ SecOps/ADMS and a developer able to clearly explain issues and resolution.

Additional context There have been discussions on this before, but Certbot was working then. Also an opportunity to re-raise LetsEncrypt possibility.

How does this benefit the users of our platform?

Definition of done

[x] Select dev rep
[x] Setup meeting
[x] Have discussion and document outcome

NickCorcoran commented 2 months ago

https://app.zenhub.com/workspaces/cloud-pathfinder---aws-5e4dbb426c3c6af8dcbf06a7/issues/gh/bcgov/cloud-pathfinder/2963

NickCorcoran commented 1 month ago

Have not had dev rep speak to ADMS with me yet. Hope to schedule that soon.

NickCorcoran commented 1 month ago

Good discussion w/ ADMS and dev rep (Wade). ADMS have started testing Entrust w/ Acme v2. Will create other tickets if needed for this.

NickCorcoran commented 2 weeks ago

Cert Manager has also been installed in KLAB for testing.