Feature Flags

Optional configuration feature flags

Construct PEM Chain Feature Flag

Available in AKV Provider release 0.0.12+

This feature is enabled by default in AKV Provider release v0.2.0

The Azure Key Vault provider for Secrets Store CSI Driver by default fetches the chain of certificates from Keyvault and writes to the mount in the same order in which the certificate chain was uploaded. This is an experimental feature that supports reordering of the certificate chain in the following order:

SERVER
INTERMEDIATE
ROOT
KEY

To enable this feature, set --construct-pem-chain=true in the provider deployment YAMLs. If using helm to install the driver and provider, set constructPEMChain: true.

Refer to #156 for more details.

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.

Last modified June 13, 2022: docs: fix uninstall commands in openshift (#913) (327bf30)