Renew certificates for a runtime
Certificates generated by Konnect SaaS expire every 30 days.
Renew your certificates to prevent any interruption in communication between Konnect SaaS and any configured runtimes.
Depending on your setup, renewing certificates might mean bringing up a new data plane, or generating new certificates and updating data planes with the new files.
Quick setup
- Stop the data plane container.
- Open Runtime Manager and click Configure New Runtime.
- Run the script again to create a new data plane with updated certificates.
- Remove the old data plane container.
Advanced setup
- Open Runtime Manager and click Configure New Runtime.
- Click Generate Certificates.
-
Save the new certificates and key into separate files:
- Certificate:
cluster.crt
- Private key:
cluster.key
- Root CA Certificate:
ca.crt
- Certificate:
-
Replace existing certificates on your data planes with the new files.
-
Restart Kong Gateway for the settings to take effect:
1
$ kong restart