Is it possible to use a cert-issuer for all certs, without ECK controlling ca?

[jonathon2nd]

Hello!

To preface I have read the following, which does not seem to cover what I want: https://github.com/elastic/cloud-on-k8s/issues/5798 https://www.elastic.co/guide/en/cloud-on-k8s/master/k8s-custom-http-certificate.html#k8s_custom_self_signed_certificate_using_cert_manager https://www.elastic.co/guide/en/cloud-on-k8s/master/k8s-tls-certificates.html#k8s-setting-up-your-own-certificate

What I would like to do is use cert-manager to provision all certs.

I was looking in the operator for some way to set the following, so that it can create certs using cert-manager

  issuerRef:
    group: certmanager.step.sm
    kind: StepClusterIssuer
    name: step-issuer

We have an internal PKI built out using smallstep, and what I would like to do is have the operator use the StepClusterIssuer that we have setup to request certs, and use the the ca.crt it gets from there. We have an internal issuing-ca that all of our other internal apps are using. I do not want it to have it's own ca that it uses to create certs, I would like it to request all the certs needed using the issuer.

Thanks in advance!