- On a cluster that is upgraded to 4.3, automated service CA rotation is enabled, but do not ensure unique CA serial numbers , this can lead to a failure in all workloads that use non-golang SSL network clients, which use service-ca to communicate with platform or between each-other
- After upgrading cluster, using
curlto check https endpoints, it reports error You are attempting to import a cert with the same issuer/serial as an existing cert, but that is not the same cert.
- Red Hat OpenShift Container Platform (OCP) 4.3.5
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.