Migration path for improved certificate signing in the cluster #5679
Labels
area/cli
Command line helpers
area/distributed
Distributed monitoring (master, satellites, clients)
enhancement
New feature or request
Milestone
Follows #5450
Requirements
We need to ensure that the certificates are copied to LocalStateDir + "/lib/icinga2/certs" during startup. The user must be notified about these changes and encouraged to use the default path.
The ApiListener configuration options will be deprecated thus enforcing the default certificate path
If the attributes are set, but the path is empty, only a deprecation warning will be logged. Icinga 2 prefers the /var/lib path then.
Tasks
ca_path
,cert_path
andkey_path
in the ApiListener object.Notes
Instead of a shell script (e.g. prepare-dirs) we have that migration path inside the binary. This makes it easy to migrate Windows clients in the same way like Linux nodes.
The text was updated successfully, but these errors were encountered: