Annotation Overrides for Issuer and ClusterIssuer Resources
The Keyfactor Command external issuer for cert-manager allows you to override default settings in the Issuer and ClusterIssuer resources through the use of annotations. This gives you more granular control on a per-Certificate/CertificateRequest basis.
Supported Annotations
Here are the supported annotations that can override the default values:
command-issuer.keyfactor.com/certificateTemplate: Overrides the certificateTemplate field from the resource spec.
command-issuer.keyfactor.com/certificateAuthorityLogicalName: Specifies the Certificate Authority (CA) logical name to use, overriding the default CA specified in the resource spec.
command-issuer.keyfactor.com/certificateAuthorityHostname: Specifies the Certificate Authority (CA) hostname to use, overriding the default CA specified in the resource spec.
Annotation Overrides for Issuer and ClusterIssuer Resources
The Keyfactor Command external issuer for cert-manager allows you to override default settings in the Issuer and ClusterIssuer resources through the use of annotations. This gives you more granular control on a per-Certificate/CertificateRequest basis.
Supported Annotations
Here are the supported annotations that can override the default values:
command-issuer.keyfactor.com/certificateTemplate: Overrides thecertificateTemplatefield from the resource spec.command-issuer.keyfactor.com/certificateAuthorityLogicalName: Specifies the Certificate Authority (CA) logical name to use, overriding the default CA specified in the resource spec.command-issuer.keyfactor.com/certificateAuthorityHostname: Specifies the Certificate Authority (CA) hostname to use, overriding the default CA specified in the resource spec.How to Apply Annotations
To apply these annotations, include them in the metadata section of your CertificateRequest resource: