ZTWIM RN

ShaunaDiaz · Shubha Narayanan · commit 81d2a10636b8 · 2025-06-23T18:55:27.000+05:30
diff --git a/_topic_maps/_topic_map.yml b/_topic_maps/_topic_map.yml
@@ -1271,6 +1271,8 @@ Topics:
     File: zero-trust-manager-uninstall
   - Name: Deploying Zero Trust Workload Identity Manager operands
     File: zero-trust-manager-configuration
+  - Name: Zero Trust Workload Identity Manager release notes
+    File: zero-trust-manager-release-notes
 ---
 Name: Authentication and authorization
 Dir: authentication
diff --git a/post_installation_configuration/index.adoc b/post_installation_configuration/index.adoc
@@ -18,9 +18,9 @@ After installing {product-title}, a cluster administrator can configure and cust
 * Alerts and notifications
 
 [id="post-install-tasks"]
-== Post-installation configuration tasks
+== Postinstallation configuration tasks
 
-You can perform the post-installation configuration tasks to configure your environment to meet your need.
+You can perform the postinstallation configuration tasks to configure your environment to meet your needs.
 
 The following lists details these configurations:
 
@@ -49,10 +49,10 @@ The following lists details these configurations:
 ** Configure the maximum number of pods per node.
 ** Enable Device Manager.
 
-* xref:../post_installation_configuration/preparing-for-users.adoc#post-install-preparing-for-users[Configure users]: OAuth access tokens allow users to authenticate themselves to the API. You can configure OAuth to perform the following tasks:
+* xref:../post_installation_configuration/preparing-for-users.adoc#post-install-preparing-for-users[Configure users]: Users can authenticate themselves to the API by using OAuth access tokens. You can configure OAuth to perform the following tasks:
 
-* Specify an identity provider
-* Use role-based access control to define and supply permissions to users
-* Install an Operator from OperatorHub
+** Specify an identity provider.
+** Use role-based access control to define and grant permissions to users.
+** Install an Operator from OperatorHub.
 
 * xref:../post_installation_configuration/configuring-alert-notifications.adoc#configuring-alert-notifications[Configuring alert notifications]: By default, firing alerts are displayed on the Alerting UI of the web console. You can also configure {product-title} to send alert notifications to external systems.
diff --git a/security/zero_trust_workload_identity_manager/zero-trust-manager-release-notes.adoc b/security/zero_trust_workload_identity_manager/zero-trust-manager-release-notes.adoc
@@ -0,0 +1,44 @@
+:_mod-docs-content-type: ASSEMBLY
+[id="zero-trust-manager-release-notes"]
+= Zero Trust Workload Identity Manager release notes
+
+include::_attributes/common-attributes.adoc[]
+:context: zero-trust-manager-release-notes
+
+toc::[]
+
+The {zero-trust-full} leverages Secure Production Identity Framework for Everyone (SPIFFE) and the SPIFFE Runtime Environment (SPIRE) to provide a comprehensive identity management solution for distributed systems.
+
+These release notes track the development of {zero-trust-full}.
+
+[id="zero-trust-manager-release-notes-1"]
+== {zero-trust-full} 0.1.0 (Technology Preview)
+
+Issued: 2025-06-16
+
+The following advisories are available for the {zero-trust-full}:
+
+* https://access.redhat.com/errata/RHBA-2025:9088[RHBA-2025:9088]
+* https://access.redhat.com/errata/RHBA-2025:9085[RHBA-2025:9085]
+* https://access.redhat.com/errata/RHBA-2025:9090[RHBA-2025:9090]
+* https://access.redhat.com/errata/RHBA-2025:9084[RHBA-2025:9084]
+* https://access.redhat.com/errata/RHBA-2025:9089[RHBA-2025:9089]
+* https://access.redhat.com/errata/RHBA-2025:9087[RHBA-2025:9087]
+* https://access.redhat.com/errata/RHBA-2025:9101[RHBA-2025:9101]
+* https://access.redhat.com/errata/RHBA-2025:9104[RHBA-2025:9104]
+
+This initial release of {zero-trust-full} is a Technology Preview. This version has the following known limitations:
+
+* Support for SPIRE federation is not enabled.
+
+* Key manager supports only the `disk` storage type.
+
+* Telemetry is supported only through Prometheus.
+
+* High availability (HA) configuration for SPIRE servers or the OpenID Connect (OIDC) Discovery provider is not supported.
+
+* External datastore is not supported. This version uses the internal `sqlite` datastore deployed by SPIRE.
+
+* This version operates using a fixed configuration. User-defined configurations are not allowed.
+
+* The log level of operands are not configurable. The default value is `DEBUG``.
