After the device is bootstrapped successfully, the administrator must rotate the CA certificate and all the server certificates used by software-defined storage on a regular basis or scheduled times to ensure that the device is compliant and secure.
TLS certificates
- Object Storage server authentication
- Metric Service server authentication
- Stunnel server authentication
Before you begin
Ensure the following:
- You meet the laptop prerequisites.
- You are able to SSH into the three nodes and execute software-defined storage CLI commands.
- You are able to log as admin in to the root admin cluster via
kubectl
.