Skip to content

Option to select intermediate certificate #1700

New issue
New issue
Closed
#3208
Closed
Option to select intermediate certificate#1700
#3208
Assignees
meyskens
Labels
area/acmeIndicates a PR directly modifies the ACME Issuer codekind/featureCategorizes issue or PR as related to a new feature.priority/important-soonMust be staffed and worked on either currently, or very soon, ideally in time for the next release.
@OndroNR

Description

@OndroNR
OndroNR
opened on May 19, 2019

Is your feature request related to a problem? Please describe.
Let's Encrypt is transitioning to their own root CA soon. For compatibility reasons, we need to keep using DST cross signed intermediate certificate. I could not find any documentation of this matter. I even don't know if cert-manager will keep using old intermediate or new one if we don't deploy new version.

Describe the solution you'd like
Option to select DST cross signed intermediate certificate or ISRG intermediate certificate per Certificate (per domain).

Describe alternatives you've considered
Updating IoT devices is not viable, for some we even don't have remote access. Also we might purchase classical certificate from older CA.

Additional context
We have a lot of different embedded IoT clients with various firmware age and difficult or none remote access.

Environment details (if applicable):
N/A

/kind feature

Metadata

Metadata

Assignees

Labels

area/acmeIndicates a PR directly modifies the ACME Issuer codekind/featureCategorizes issue or PR as related to a new feature.priority/important-soonMust be staffed and worked on either currently, or very soon, ideally in time for the next release.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions