Skip to content

Trust Manager overview

Trust Manager is a small Kubernetes operator which helps reduce the overhead of managing TLS trust bundles in your clusters.

It orchestrates bundles of trusted X.509 certificates which are primarily used for validating certificates during a TLS handshake but can be used in other situations, too.

It adds the Bundle custom Kubernetes resource (CRD) which can read input from various sources and combine the resultant certificates into a bundle ready to be used by your applications.

Trust Manager ensures that it's both quick and easy to keep your trusted certificates up-to-date and enables cluster administrators to automate easily provision of a secure bundle without having to worry about rebuilding containers to update trust stores.

It's designed to complement cert-manager and works well when consuming CA certificates from a cert-manager Issuer or ClusterIssuer but can be used entirely independently of cert-manager if needed.