Automate certificate management in cloud native environments
cert-manager builds on top of Kubernetes, introducing certificate authorities and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide 'certificates as a service' to developers working within your Kubernetes cluster.
Highlights
- Provide easy to use tools to manage certificates.
- A standardised API for interacting with multiple certificate authorities (CAs).
- Gives security teams the confidence to allow developers to self-server certificates.
- Support for ACME (Let's Encrypt), HashiCorp Vault, Venafi, self signed and internal certificate authorities.
- Extensible to support custom, internal or otherwise unsupported CAs.
Features
Support for popular CA types
Out of the box, cert-manager supports ACME (i.e. Let's Encrypt), HashiCorp Vault, Venafi, self signed and internal CA issuer types.
Kubernetes native
cert-manager natively targets Kubernetes and OpenShift. This means it integrates well with other ecosystem tools and addons for your cluster, in order to seamlessly secure all your cloud native infrastructure.
cert-manager is a CNCF member project