Overview
Certificates are managed at the tenant level, meaning they can be reused across multiple namespaces rather than being scoped to a single one. They are stored in PKCS12 key store format, ensuring compatibility across different systems and platforms.
Key Concepts
By using tenant-level certificates, users can:
-
Tenant-level scoping — certificates are shared across namespaces, eliminating the need to create duplicates for each environment
-
PKCS12 format — provides a standardised way to store and manage private and public keys
-
Encryption — sensitive keys are protected through mandatory encryption (file password) with optional individual key passwords
What certificates are used for
Certificates support several critical functions:
-
Securing communication and performing signing operations between components
-
Enabling integrations such as gateways and single sign-on (SSO)
-
Authenticating components across namespace boundaries
Prerequisites: Managing certificates requires tenant-level admin permissions.
%20(2).png?cb=542d04510ecc98bf3ad394e877e785fd)