Configure scylla-manager with CQL over TLS

[tnozicka]

When manager talks to ScyllaClusters over CQL it should use TLS.

We need to look into how the manager can handle this as each ScyllaCluster has independent clientCA.

[tnozicka]

Looks like we could just create a per cluster manager client cert and sync them using https://github.com/scylladb/scylla-operator/blob/4be6fdbb1a6167a5e60e19d00ae6a4c2d5373cbe/pkg/mermaidclient/internal/models/cluster.go#L34-L40

[scylla-operator-bot[bot]]

The Scylla Operator project currently lacks enough contributors to adequately respond to all issues.

This bot triages un-triaged issues according to the following rules:

• After 30d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
• After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

• Mark this issue as fresh with /remove-lifecycle stale
• Close this issue with /close
• Offer to help out

/lifecycle stale

[rzetelskik]

/remove-lifecycle stale /triage accepted