The customer got a new certificate with all the DNS names and IPs, we
tested it on one host only which was promising. They will restart all
the remaining RGWs during their next maintenance window on Wednesday.
Thanks!
Eugen
Zitat von Eugen Block <eblock@xxxxxx>:
Thanks, that's what I proposed to the customer as well. They also
have their own CA, so it probably shouldn't be a problem to have
such a certificate as well.
Thanks!
Zitat von Kai Stian Olstad <ceph+list@xxxxxxxxxx>:
On Thu, Jul 18, 2024 at 10:49:02AM +0000, Eugen Block wrote:
And after restarting the daemon, it seems to work. So my question
is, how do you deal with per-host certificates and rgw? Any
comments are appreciated.
By not dealing with it, sort of.
Since we run our own CA, so I create one certificate with all the
names of all the
rgw hosts including their IP addressees in the certificate Subject
Alt Names(SAN).
--
Kai Stian
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
