You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: modules/installation-configure-proxy.adoc
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -162,10 +162,10 @@ ifdef::vsphere,vmc[]
162
162
You must include vCenter's IP address and the IP range that you use for its machines.
163
163
endif::vsphere,vmc[]
164
164
<4> If provided, the installation program generates a config map that is named `user-ca-bundle` in
165
-
the `openshift-config` namespace that contains one or more additional CA
166
-
certificates that are required for proxying HTTPS connections. The Cluster Network
167
-
Operator then creates a `trusted-ca-bundle` config map that merges these contents
168
-
with the {op-system-first} trust bundle, and this config map is referenced in the `trustedCA` field of the `Proxy` object. The `additionalTrustBundle` field is required unless
165
+
the `openshift-config` namespace to hold the additional CA
166
+
certificates. If you provide `additionalTrustBundle` and at least one proxy setting, the `Proxy` object is configured to reference the `user-ca-bundle` config map in the `trustedCA` field. The Cluster Network
167
+
Operator then creates a `trusted-ca-bundle` config map that merges the contents specified for the `trustedCA` parameter
168
+
with the {op-system} trust bundle. The `additionalTrustBundle` field is required unless
169
169
the proxy's identity certificate is signed by an authority from the {op-system} trust
170
170
bundle.
171
171
If you use an MITM transparent proxy network that does not require additional proxy configuration but requires additional CAs, you must provide the MITM CA certificate.
0 commit comments