managing-certificates-and-encryption
OfficialSecure TLS and CMEK lifecycle across clusters.
Authorcockroachdb
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Managing TLS certificates and CMEK across multi-tier deployments is complex and error-prone, risking outages and data exposure if not properly coordinated.
Core Features & Use Cases
- Certificate lifecycle management for self-hosted and cloud deployments, including expiry monitoring and rotation.
- CMEK management across Advanced/BYOC, including cloud KMS integration and policy auditing.
- Guidance for Standard/Basic deployments with fully managed TLS and encryption, plus safety and rollback procedures.
- Safety-focused procedures and references to rotate certificates with minimal downtime and risk.
Quick Start
Identify your deployment tier and I will outline a secure rotation and CMEK plan.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: managing-certificates-and-encryption Download link: https://github.com/cockroachdb/claude-plugin/archive/main.zip#managing-certificates-and-encryption Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.