Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TLS Certificate Renewal #653

Closed
arun-kbharathan-e3768 opened this issue Feb 19, 2025 · 1 comment
Closed

TLS Certificate Renewal #653

arun-kbharathan-e3768 opened this issue Feb 19, 2025 · 1 comment

Comments

@arun-kbharathan-e3768
Copy link

Is there any documentation on how to handle TLS certificate renewal when they approach expiration?
@github-actions github-actions bot added the untriaged Issues that have not yet been triaged label Feb 19, 2025
@DandyDeveloper
Copy link
Collaborator

@arun-kbharathan-e3768 It'll be the same as everything is my understanding. You've got the secret to update in Kubernetes, then you'll need to trigger a rollover of the nodes for the k8s side to do the work.

Otherwise, you could use a config reload sidecar attached to a node, then do a security reload for certificates: https://opensearch.org/docs/latest/security/access-control/api/#reload-transport-certificates

There's no native option at the moment in the helm chart, as far as I understand.

@DandyDeveloper DandyDeveloper removed the untriaged Issues that have not yet been triaged label Feb 25, 2025
@github-project-automation github-project-automation bot moved this from 🆕 New to ✅ Done in Engineering Effectiveness Board Feb 25, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
Engineering Effectiveness Board
Status: ✅ Done
Milestone
No milestone
Development

No branches or pull requests
2 participants
@DandyDeveloper @arun-kbharathan-e3768