Configuring node certificate generation
Learn about certificate generation options.
CFM Operator provides automatic certificate generation for each NiFi node in a given cluster by way of cert-manager certificates to secure intra-cluster communication between NiFis. To configure nodeCertGen, a cert-manager Issuer or ClusterIssuer is required. A self-signed Issuer setup is sufficient for development environments. In production environments use a third-party authority, or internal signing CAs.
spec:
security:
nodeCertGen:
issuerRef:
name: self-signed-ca-issuer
kind: ClusterIssuer