New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

What should the default cert validity duration be? #30

Open

maxsmythe opened this issue Jan 22, 2021 · 1 comment

Milestone

Allow Setting Cer...

Contributor

maxsmythe commented Jan 22, 2021

Different organizations may have different views of the best setting. What's a good one-size-fits-all value?

We should discuss this once all the other work in this milestone is complete.

maxsmythe added this to the Allow Setting Cert Validity Duration milestone

gparvin commented Jan 25, 2021

Make it configurable, but other defaults are:

cert-manager and let's encrypt: 90 days
publicly trusted certs now have a 13 month max
OpenShift service signing service: 2 years

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment