Having problems with your account or logging in?
A lot of changes are happening in the community right now. Some may affect you. READ MORE HERE

CDF certificate should be improved to have long term valid certificate

CDF certificate should be improved to have long term valid certificate

Recently, certificate expiry risk has been detected to all CDF based on K8S's certificate management.

ex.) https://softwaresupport.softwaregrp.com/doc/KM03350900 is one of support documentation for SMA CDF.

The customer has to renew the CDF certificate according to online help for each CDF version.

However, the renewal procedure generates a 1-year valid certificate again.
Customer will be required annual renewal task.
It is very troublesome and unfriendly for our customer even if it's the default behavior of bundled K8S.

So, our all CDF should be improved to generate long term certificate (maybe also CA cert of K8S) by easy step (or installation).


Micro Focus Frequent Contributor
Micro Focus Frequent Contributor
Status changed to: Declined

Current Security and Trust office policy dictates that certificate cannot be issued longer than 1 year

dbmobi Contributor.

Shouldn't the certificate renewal process be automated anyway as well as have a short renewal cycle? As it stands certificate revocation list are broken.

The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.