Thank you, Jason, Do you have any idea what should we put in the MAS Admin Certificate? because we use the setup below but we encounter an issue saying that the server's certificate chain is incomplete.
ZeroSSL files:
certificate.crt
ca_bundle.crt(intermediate)
private.key
setup 1:
tls.crt - copied from the certificate.crt provided by the zerossl
ca.crt - copied from the intermediate.crt provided by the zerossl
tls.key - copied from the private.key provided by the zerossl
Result - incomplete chain
setup 2:
tls.crt - copied from the certificate.crt + ca_bundle.crt provided by the zerossl
ca.crt - skipped
tls.key - copied from the private.key provided by the zerossl
Result - incomplete chain
We also tried to import the ca_bundle.crt in the MAS Manage Certificate but no luck.
------------------------------
John Paul Degala
------------------------------
Original Message:
Sent: Mon April 15, 2024 09:36 PM
From: Jason VenHuizen
Subject: Type of SSL to use in MAS
Multi domain SAN is the way to go. Otherwise you will need to maintain quite a few certificates individually and that is not going to be fun.
That said you technically can assign a certificate per route if you want to.
Depending on your environment you may even consider using an automatic dns solver for cert manager to automatically issue and maintain your certs with LetsEncrypt.
Jason
Original Message:
Sent: 4/15/2024 9:10:00 PM
From: John Paul Degala
Subject: Type of SSL to use in MAS
Hi Everyone,
I wonder what type of certificate should we use in our MAS, in our initial assessment Multi-Domain SAN certificate is the best choice but can we use this as a single certificate for OpenShift and MAS?
Thanks
------------------------------
John Paul Degala
------------------------------