mangle icon indicating copy to clipboard operation
mangle copied to clipboard
verified publisher icon vmware

Capability to support CA self signed certificates in EKS

Open sowjanya-eks opened this issue 2 years ago • 3 comments

Hello Mangle Team, (@rpraveen-vmware, @ranjansvmware)

Thank you for joining yesterday's call. As we discussed here is the new request for CA self signed certificates.

This is a feature request to support CA self signed certificates in EKS with mangle deployment in both UI and command prompt line.

Regards, Sowjanya.

sowjanya-eks avatar Aug 08 '23 14:08 sowjanya-eks

Could anyone please acknowledge this issue. @rpraveen-vmware, @ranjansvmware

sowjanya-eks avatar Aug 18 '23 13:08 sowjanya-eks

The support for CA certificate is good feature to have in Mangle. In most cases CA signed certificate are in .p12 or .jks store format. It should be supporting both.

This should be implemented in three ways:

  1. During deployment: Docker container creation should be taking the certificate and bundling into the container image.
  2. At container run time: "docker start" should be taking keystore format, keypass, storepass, certificate file as docker parameters.
  3. Post Deployment: UI/Command line replacement support of self signed certificate with CA signed certificate.

ranjansvmware avatar Aug 19 '23 15:08 ranjansvmware

At this time, we cannot implement 1 and 2, so we tried with the option 3. However, the new JKS is not picked up. will it be possible to connect over the call and we have required JKS. @rpraveen-vmware, @ranjansvmware

sowjanya-eks avatar Aug 21 '23 13:08 sowjanya-eks