Skip to content

OpenShift Routes for cert-manager overview

OpenShift Routes for cert-manager automatically provisions certificates for routes in OpenShift from any cert-manager issuer by using annotations. This process is similar to how ingress or gateway resources work in Kubernetes.

OpenShift Routes for cert-manager provides the following key benefits:

  • Automates certificate provisioning in OpenShift by watching for routes with cert-manager annotations and creating the corresponding certificate resources.
  • Supports any cert-manager issuer including Enterprise Issuer and self-signed CAs, so you can use the same certificate authorities for routes that you use for other workloads.
  • Rotates certificates automatically before they expire, at two-thirds of the certificate's lifetime or at the cert-manager.io/renew-before time.

By using OpenShift Routes for cert-manager, your routes receive TLS certificates from cert-manager though annotations.

What's next?

To get started, install OpenShift Routes for cert-manager alongside cert-manager in your cluster. Then, configure it by annotating your routes.