[Openstack-operators] Renewing keystone signing certs

Sam Morrison sorrison at gmail.com
Mon Jun 23 05:28:49 UTC 2014


Our signing certificate is due to expire in a couple of weeks.

I’m trying to figure out the best way to replace it with a new one.

I have the new one signed by the same CA but I’m a little unsure of the workflow to replace it. If I swap out the old and new ones will old tokens no longer be valid?

Anyone else done this and have thoughts?

Cheers,
Sam





More information about the OpenStack-operators mailing list