Skip to content

Reference: Kubernetes cluster details

On the Kubernetes Clusters page, click any row to open a right-hand panel with more information about a cluster. This panel is divided into tabs.

Properties

The Properties tab contains general information, including the cluster's Name, Description, and Owning Team. Click View Certificates to view all installed certificates for that cluster.

Issuers

The cert-manager Issuers tab lists all issuers in a selected Kubernetes cluster and provides each issuer's namespace, status, type, and number of certificates issued. Click a row to view more information.

About Kubernetes issuers

Issuers are Kubernetes resources that define how certificates are issued and renewed. In Venafi Control Plane, only cert-manager-related issuers are shown.

Status and Type

The Status and Type section contains key operational details. Use these to assess issuer health and type, view a status history, and see full status data for troubleshooting.

Field Description
Status Indicates if the issuer can process certificate requests. Possible values are Healthy or Unhealthy.
Status Message Provides more information about the issuer status, including any problems.
Status Transition Shows when the issuer's status last changed.
Issuer Type Identifies the type of issuer. Possible values include:
  • ACME Issuer
  • CA Issuer
  • SelfSigned Issuer
  • HashiCorp Vault Issuer
  • Open-Source Issuer for CyberArk Certificate Manager
  • Enterprise Issuer for CyberArk Certificate Manager
  • Smallstep Issuer
  • Google Certificate Authority Service Issuer
  • AWS Private Certificate Authority Issuer
  • Cloudflare Origin CA
  • FreeIPA Issuer
  • EJBCA Issuer
Full Status Click View to access raw status details in YAML format, including conditions and diagnostics.

Issuance Configuration

The Issuance Configuration section contains configuration details that determine how the issuer processes certificate requests and integrates with your certificate lifecycle management platform.

Tip

The Platform, Zone, and Connection Resource fields only appear for Venafi issuers.

Field Description
Platform The certificate lifecycle management platform used by the issuer, for example CyberArk Certificate Manager, SaaS.
Zone The zone or policy used for certificate issuance. Click the links before and after the backslash to view the application or issuing template.
Connection Resource The name of the resource that holds connection details for the issuer.
Issuer Scope The scope of the issuer; either cluster-wide or restricted to a specific namespace.
Issuer Spec Click View to access the raw issuer configuration in YAML format for advanced details and troubleshooting.

Metadata

The Metadata section shows supporting details that help identify, search, and understand issuer usage and configuration in the cluster.

Field Description
Referenced Certificates The number of certificates discovered on the cluster and added to the certificate inventory that reference this issuer.
Kubernetes Annotations Annotations applied to the issuer resource or to the namespace where the issuer is deployed; for example, the creation date or associated application. Click View to copy these from a dialog.
Kubernetes Labels Labels applied to the issuer resource; for example, the environment or team. Click View to copy these from a dialog.