(no commit message)

author stephan48 <stephan48@web>

Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)

committer IkiWiki <ikiwiki.info>

Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)
author stephan48 <stephan48@web>
Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)
committer IkiWiki <ikiwiki.info>
Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)
diff --git a/posts/2023-03-27-k8s-cluster-step-ca-from-scratch.mdwn b/posts/2023-03-27-k8s-cluster-step-ca-from-scratch.mdwn

index 343417dbfb7565b9e7e506467e8d1f58d12931e2..1785bc1e1f60c0499b3809301f4e2bfd7072d99e 100644 (file)
--- a/posts/2023-03-27-k8s-cluster-step-ca-from-scratch.mdwn
+++ b/posts/2023-03-27-k8s-cluster-step-ca-from-scratch.mdwn
@@ -2,8 +2,11 @@
  
  This is just a wip command by command play by play for now, i will add context and infos later(TM).
  
+random comments:
+
  - root$ denotes stuff done as root
  - $ denotes stuff done as normal user
+- you totally can use a different easy-rsa instance to generate your sub-ca, it does not need to be done in the root-ca "pki" - i will try to mark the points where you need to divert at a later time, essentially you need two easy-rsa instances(go figure, one with a ca build and one without - and then move the CSR/Finished cert between them)
  
  
  ```
author	stephan48 <stephan48@web>
	Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)
committer	IkiWiki <ikiwiki.info>
	Mon, 27 Mar 2023 21:42:39 +0000 (23:42 +0200)