Hello Catherine, David and Kenny, If I've understood well last TSC meeting, AAF is now on "maintenance" mode. Regarding REQ-361<https://jira.onap.org/browse/REQ-361> (Continue hardcoded passwords removal, TSC Must Have as it's a continuation), we mandate ONAP components to retrieve automatically their certificates using certInitializer.
In order for that to work (with current ONAP implementation, mandating AAF as certificate generator), components needs to have created "namespaces", "roles" and certificates into AAF. According to Morgan's email, this means that at least the following components (I'm just listing, some are also not planned for Guilin) will need to create all that in AAF: * APPC * DGBuilder * CLI * ESR Server * Holmes * MSB * Multicloud * Robot * UUI These ones may be impacted also (they have "sslv3 alert bad certificate" or are using GRPC): * AAI * CDS * DCAE When they have created what's needed in AAF, a new release with these changes mut be created as far as I understand AAF process I know also that Damian's team would like to update aaf cert service with new features, this subcomponent being "autonomous" with the rest of AAF. My question is then: will we have new release of AAF in order to onboard these new certificates? If no, what's plan B? Regards, Sylvain _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you. -=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#6776): https://lists.onap.org/g/onap-tsc/message/6776 Mute This Topic: https://lists.onap.org/mt/75536893/21656 Group Owner: [email protected] Unsubscribe: https://lists.onap.org/g/onap-tsc/leave/2743226/1412191262/xyzzy [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
