Integrating a third-party certificate manager
If a third-party certificate manager with a valid cluster issuer is integrated before the installation of Cloudera Data Services on premises, it allows you to validate the certificates required to initialize the Cloudera Data Engineering Services and Virtual Clusters.
When you start a Cloudera Data Services on premises service installation, make
sure that you have installed a cluster issuer to use third-party certificates. For installing a
cluster issuer, see Setting up Certification Manager using Venafi TPP. A valid
cluster issuer must have:
- The issuer.cdp.cloudera.com/type=longlived annotation
- The following label
set:
issuer.cdp.cloudera.com/project=<***CDP_NAMESPACE***>
You must have a unique valid cluster issuer created. If multiple cluster issuers are found, the Cloudera Data Engineering Service creations fail.
