Self-signed Endpoints
Note
This feature is available with bosh-openstack-cpi v23+.
When your OpenStack is using a self-signed certificate, you want to enable the OpenStack CPI to validate it. You can configure the OpenStack CPI with the public certificate of the RootCA that signed the OpenStack endpoint certificate.
-
Configure
properties.openstack.connection_optionsto include the propertyca_cert. It can contain one or more certificates.properties: openstack: connection_options: ca_cert: |+ -----BEGIN CERTIFICATE----- MII... -----END CERTIFICATE-----
-
Set the
registry.endpointconfiguration to include basic auth credentials -
Deploy the Director