In order to give you better service we use cookies. By continuing to use our website, you agree to the use of cookies as described in our Cookie Policy

Kong Logo
search
Docs
Kong Konnect Konnect SaaS Kong Gateway (Enterprise) Kong Mesh Plugin Hub
Open Source Kong Gateway (OSS) decK Kubernetes Ingress Controller Insomnia Kuma
Support Community Kong U Demos & Labs
Get Started
Kong Konnect
Konnect SaaS

Renew certificates for a runtime

Certificates generated by Konnect SaaS expire every 30 days.

Renew your certificates to prevent any interruption in communication between Konnect SaaS and any configured runtimes.

Depending on your setup, renewing certificates might mean bringing up a new data plane, or generating new certificates and updating data planes with the new files.

Quick setup

  1. Stop the data plane container.
  2. Open Runtime Manager and click Configure New Runtime.
  3. Run the script again to create a new data plane with updated certificates.
  4. Remove the old data plane container.

Advanced setup

  1. Open Runtime Manager and click Configure New Runtime.
  2. Click Generate Certificates.

  3. Save the new certificates and key into separate files:

    • Certificate: cluster.crt
    • Private key: cluster.key
    • Root CA Certificate: ca.crt

  4. Replace existing certificates on your data planes with the new files.

  5. Restart Kong Gateway for the settings to take effect:

    1

     $ kong restart
image