Service Mesh Academy
Live logo

Enterprise PKI in the cloud-native world with Linkerd and cert-manager

Live on
Jun 16, 2022

Migrating an existing enterprise PKI to Kubernetes can be daunting — there are so many moving parts to achieving trust across boundaries! From bootstrapping certificates to terminating TLS at the ingress level, all the way down to securing communication between workloads, supporting identity management quickly becomes non-trivial. In this hands-on workshop, members of the cert-manager and Linkerd teams will show you how to combine the two projects to manage identity while providing mTLS between your workloads, greatly reducing the burden on platform teams. You’ll learn how to integrate with a CA from an external PKI, and use it to bootstrap zero-trust across all cluster boundaries.

Migrating an existing enterprise PKI to Kubernetes can be daunting — there are so many moving parts to achieving trust across boundaries! From bootstrapping certificates to terminating TLS at the ingress level, all the way down to securing communication between workloads, supporting identity management quickly becomes non-trivial. In this hands-on workshop, members of the cert-manager and Linkerd teams will show you how to combine the two projects to manage identity while providing mTLS between your workloads, greatly reducing the burden on platform teams. You’ll learn how to integrate with a CA from an external PKI, and use it to bootstrap zero-trust across all cluster boundaries.