Decision Management (ODM,ADS)

 View Only
Expand all | Collapse all

ODM OCP - How to replace default self-signed certificate with a CA certificate

  • 1.  ODM OCP - How to replace default self-signed certificate with a CA certificate

    Posted Mon May 24, 2021 05:21 AM
    Hi Team, 

    As you know, ODM on Certified Kubernetes is delivered with a default certificate, odmonicpserver.cer.

    How could I replace it with CA Certificate ( trusted SSL certificate)?

    Any tips? recommendations and steps?

    Thanks is advance!

    ------------------------------
    Diego Rodríguez Flores
    Customer Success Manager
    IBM
    ------------------------------


  • 2.  RE: ODM OCP - How to replace default self-signed certificate with a CA certificate

    Posted Mon May 24, 2021 08:22 AM
    You can create a secret with your own keystore and use it when installing ODM.  It has to be done during installation to be taken into account.
    Read more here  https://www.ibm.com/docs/en/odm/8.10?topic=production-defining-security-certificate

    ------------------------------
    Alain Robert
    ------------------------------

    Original Message


  • 3.  RE: ODM OCP - How to replace default self-signed certificate with a CA certificate

    Posted Mon May 24, 2021 09:02 AM
    Thank you, Alain. 

    I'll have a look on that reference.

    ------------------------------
    Diego Rodríguez Flores
    Customer Success Manager
    IBM
    ------------------------------

    Original Message