Hello Community and Devs,
I have several questions about what’s possible with icinga CA.
-
Is it possible (now or in the future) to use an external CA (a company one for example) for icinga to sign endpoints csr instead of using the icinga generated one ?
As far i understood this related post, it seems possible but may introduce unexpected behaviors which could be hard to debug and solve.
Own CA for Icinga Cluster/API communication? -
Is it possible (now or in the future) to have multiple SAN (suject alternative name, endpoint fqdn for icinga) for an endpoint certificate ?
The idea is to have both the endpoint fqdn and an other fqdn pointing to a virtual address to ensure high availability.
Thanks by advance,