Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Question: About SSL, LE and Cert-Manager #1108

Open
atmosx opened this issue Oct 22, 2024 · 0 comments
Open

Question: About SSL, LE and Cert-Manager #1108

atmosx opened this issue Oct 22, 2024 · 0 comments
Labels
question Further information is requested

Comments

@atmosx
Copy link

atmosx commented Oct 22, 2024
edited
Loading

Describe your question

The operator does not support automatically configuring DNS resolution for Redis or Sentinel. Since Sentinel returns IP addresses, using public CAs like Let's Encrypt or ZeroSSL is not feasible.

A built-in alternative is to use cert-manager's issuer with a self-signed certificate, requiring clients to use certificates to connect to Redis and Sentinel.

Are there any scenarios where public CA-issued certificates can be used with cert-manager and the Redis operator?

What version of redis-operator are you using?

redis-operator version: v0.18.0

Additional context

Trying to figure out supported SSL stories and their trade-offs.
@atmosx atmosx added the question Further information is requested label Oct 22, 2024
@atmosx atmosx changed the title About SSL, LE and Cert-Manager Question: About SSL, LE and Cert-Manager Oct 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@atmosx