Open 1000TurquoisePogs opened 1 year ago
Hi there, here is a start of the enhancement process, please feel free to leave your comments in the pull request #2822 in doc site repo.
Can we declare this to be a victory in v2.10? Seems like we did good stuff there.
We (as Broadcom) are presenting the improvements to some of our customers this Thursday, I believe that we improved a lot, but before closing I would like to get their feedback.
I've assisted many users, each taking significant time to get zowe server keystores set up correctly. The problems and time consumed is rarely ever due to a code bug, it's overwhelmingly user education. There are many tickets that describe problems, waiting to be done: https://github.com/zowe/docs-site/issues/2643
https://github.com/zowe/docs-site/issues/2563
https://github.com/zowe/docs-site/issues/2304 https://github.com/zowe/docs-site/issues/2303 https://github.com/zowe/docs-site/issues/2302 https://github.com/zowe/docs-site/issues/1227 https://github.com/zowe/docs-site/issues/1281 https://github.com/zowe/zowe-install-packaging/issues/1653
Education falls into a few categories where improvements must be made: 1) Users need to know the concepts of keystores, keyrings, certificates, certificate authorities
4) Users may not know what Zowe needs at minimum
5) Users need to know what's special, if anything, about the way Zowe uses certificates Some people try to import certs from a different webserver, and then complain that it doesn't work with Zowe, implying there's something wrong with Zowe's support for certs. This is often because they don't know how Zowe uses the certs differently from another webserver. Users need to know:
6) Users need to know how to avoid ending up with a self-signed cert if they can.