RS: Added mtls_trusted_ca to the certificates table #1428

rrelledge · 2025-04-16T19:08:08Z

github-actions · 2025-04-16T19:08:24Z

dwdougherty

LGTM.

yoavredis

@rrelledge a few comments:

If certain certificates are not auto-generated and are later uploaded (optionally) by the customer, then they most likely won't be "self-signed" certs. The whole point of "self-signed" certs is that the system generates them so that the customer won't have to supply its own.
Per Eng, ldap_client and mtls_trusted_ca are not auto-generated by the cluster. Thus, the opening paragraph is misleading the reader into thinking that the system auto-generates self-signed certificates for the entire list.

I suggest to:

Add a 3rd column to the certificate list, indicating auto-generated yes/no
Explain that the list contains all the supported certificates.
-- Some are auto-generated (self-signed) to be used OOTB, and could be replaced with customer's certs
-- Some are not auto-generated which makes them optional. They must be provided by the customer for using the specific feature they are coupled with.

yoavredis

@rrelledge now it's clear and accurate :)
LGTM, 10x.

DOC-1574 RS: Added mtls_trusted_ca to certificates table

2a245a0

rrelledge added the rs Redis Enterprise Software label Apr 16, 2025

rrelledge requested review from yoavredis and a team April 16, 2025 19:08

rrelledge self-assigned this Apr 16, 2025

dwdougherty approved these changes Apr 16, 2025

View reviewed changes

yoavredis requested changes Apr 17, 2025

View reviewed changes

rrelledge added 2 commits April 17, 2025 10:42

Merge branch 'main' into DOC-1574

293ff2a

DOC-1574 Feedback updates and copy edits for certificates overview

5b9f0de

rrelledge requested a review from yoavredis April 17, 2025 17:20

yoavredis approved these changes Apr 20, 2025

View reviewed changes

rrelledge merged commit c6e5e0e into main Apr 21, 2025
5 checks passed

rrelledge deleted the DOC-1574 branch April 21, 2025 14:24

Provide feedback