Option 2 - Utilize OpenShift Service Serving Certificates

To utilize this feature, set the Enable Service Serving Certificates property, ssl.serviceServingCertificates, to true when deploying the ITX Runtime Service, and set the SSL Certificate And Key Secret property, ssl.secret, to itx-rs-svc, which is the name of the Secret object that is automatically created by this feature. After installing the product, notice that a new ConfigMap object itx-rs-config-ssc is automatically created and contains a single key with name service-ca.crt. It contains a PEM encoded certificate of the CA used for signing certificates. Also, a Secret with the itx-rs-svc name is created with a generated PEM certificate and key for the service. Note that this certificate is valid only for accessing the service inside the cluster.

For more information about the OpenShift Service Serving Certificates feature, see OpenShift documentation.