Re: Reg: Setting up strimzi kafka with own CA certs
toggle quoted message Show quoted text
FWIW I am in the process of rewriting the certificate handling to support more flexible CA hierarchies (and other things) for the "cluster CA" and "clients CA". It's still some way off a PR, but it would support having brokers trust a given root CA certificate (without access to the key), but issuing using an intermediate certificate, which sounds like what you want.
On Thu, Apr 15, 2021 at 5:10 PM Jakub Scholz <jakub@...> wrote: