diff options
author | Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> | 2020-09-09 16:43:29 +0200 |
---|---|---|
committer | Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> | 2020-09-10 13:58:46 +0000 |
commit | 2ba6ca26c42372c412aa2fae0e26e27b5708f37f (patch) | |
tree | d4becfac38910238c8bc9fd580f72ff460776c2b /docs | |
parent | 13d63d3137c8a365cd1cd8a2a9f7dac72e894b57 (diff) |
Modify external TLS support description
- Add information about keystores from CMPv2
Issue-ID: DCAEGEN2-2253
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: I24d7347f18e364fa1cac142f9148088bbe0d4401
Diffstat (limited to 'docs')
-rw-r--r-- | docs/sections/tls_enablement.rst | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/docs/sections/tls_enablement.rst b/docs/sections/tls_enablement.rst index 3eb23007..0407d4e9 100644 --- a/docs/sections/tls_enablement.rst +++ b/docs/sections/tls_enablement.rst @@ -119,6 +119,8 @@ External TLS support was introduced in order to integrate DCAE with CertService This external TLS support doesn't influence ONAP internal traffic which is protected by certificates issued by AAF's CertMan. External TLS Support was introduced in k8splugin 3.1.0. +From k8splugin 3.4.1 when external TLS is enabled (use_external_tls=true), keystore contains only certificate from CMPv2 server. Keystore issued by CertMan has appended .bak extension and is not used. + 1. Certificate setup: To create certificate artifacts, AAF CertService must obtain the certificate details. Common name and list of Subject Alternative Names (SANs) are set in blueprint as described in step 3. |