Strimzi
Client-ca used for #6490
Replies: 1 comment 2 replies
-
|
There are docs for providing your own Clients CA. If you do not plan to use the User Operator to issue the user certificates, you can just provide some dummy private key (create the Secret and the record inside, but use some PLACEHOLDER value instead of the real private key). |
Beta Was this translation helpful? Give feedback.
-
|
Thank you, just to confirm then Is client ca mainly used only for issuing user certificate? |
Beta Was this translation helpful? Give feedback.
-
|
The Clients CA public key is used to establish trust between the user and the broker. The private key is needed only for singing the user certificates. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Experts. Our use case we are not planning to generate user certificate from Kafka rather will use our bank provided pki certificate (I.e type: tls-external during user creation ) Which allows a general renewal and standards for everyone in company. Also listener are configured to use our own certificate too.
want to know what is the importance of client-ca in our use case context ?
If I understood reading some where, client-ca be used only for ssl handshake in this case by using the public key?
is this true understanding ?
Where else the client-ca be used ?
Beta Was this translation helpful? Give feedback.
All reactions