mirror of
https://github.com/openshift/openshift-docs.git
synced 2026-02-05 12:46:18 +01:00
25 lines
1.1 KiB
Plaintext
25 lines
1.1 KiB
Plaintext
// Module included in the following assemblies:
|
|
//
|
|
// * migrating_from_ocp_3_to_4/migrating-applications-3-4.adoc
|
|
// * migration_toolkit_for_containers/migrating-applications-with-mtc
|
|
|
|
:_mod-docs-content-type: PROCEDURE
|
|
[id="creating-ca-bundle_{context}"]
|
|
= Creating a CA certificate bundle file for self-signed certificates
|
|
|
|
If you use a self-signed certificate to secure a cluster or a replication repository for the {mtc-first}, certificate verification might fail with the following error message: `Certificate signed by unknown authority`.
|
|
|
|
You can create a custom CA certificate bundle file and upload it in the {mtc-short} web console when you add a cluster or a replication repository.
|
|
|
|
.Procedure
|
|
|
|
Download a CA certificate from a remote endpoint and save it as a CA bundle file:
|
|
|
|
[source,terminal]
|
|
----
|
|
$ echo -n | openssl s_client -connect <host_FQDN>:<port> \ <1>
|
|
| sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > <ca_bundle.cert> <2>
|
|
----
|
|
<1> Specify the host FQDN and port of the endpoint, for example, `api.my-cluster.example.com:6443`.
|
|
<2> Specify the name of the CA bundle file.
|