Cannot use a custom certificate for oauth-openshift route in OpenShift 4

Solution In Progress - Updated -

Issue

  • Some companies have a restricted policy about using wildcard certificates.
  • OAuth route (like oauth-openshift.apps.mycluster.domain.tld) uses the default wildcard certificate.
  • Editing the secret v4-0-config-system-router-certs in openshift-authentication namespace by replacing the certificate with a customized one works but the change is reverted by the Authentication Operator.

Environment

  • OpenShift Container Platform
    • prior to 4.8

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content