Skip to content

Enterprise Issuer for Next-Gen Trust Security overview

Enterprise Issuer for Next-Gen Trust Security is a cert-manager issuer that lets your clusters request certificates from Next-Gen Trust Security so certificates follow your organization's centrally managed policies.

Enterprise Issuer provides the following key benefits:

  • Issues certificates from Next-Gen Trust Security so your cluster can request certificates from centrally managed CAs.
  • Supports cluster-wide or per-namespace issuance through VenafiClusterIssuer and VenafiIssuer custom resources.
  • Authenticates through Connection resource using the same secure connection model as other Next-Gen Trust Security components.

By using Enterprise Issuer, your clusters can request and issue certificates from certificate authorities configured in Next-Gen Trust Security without connecting to those CAs directly.

What's next?

To get started, install Enterprise Issuer alongside cert-manager in your cluster. After installation, configure Enterprise Issuer with a VenafiIssuer or VenafiClusterIssuer.