openshift · mburke5678 · Jun 26, 2026 · Jun 17, 2026
diff --git a/modules/ca-bundle-replacing.adoc b/modules/ca-bundle-replacing.adoc
@@ -6,17 +6,20 @@
 [id="ca-bundle-replacing_{context}"]
 = Replacing the CA Bundle certificate
 
+[role="_abstract"]
+To trust a custom certificate authority for egress connections in {product-title}, you can replace the CA bundle by creating a config map with your root CA certificate and updating the cluster proxy configuration.
+
 .Procedure
 
 . Create a config map that includes the root CA certificate used to sign the wildcard certificate:
 +
 [source,terminal]
 ----
 $ oc create configmap custom-ca \
-     --from-file=ca-bundle.crt=</path/to/example-ca.crt> \//<1>
+     --from-file=ca-bundle.crt=</path/to/example-ca.crt> \
      -n openshift-config
 ----
-<1> `</path/to/example-ca.crt>` is the path to the CA certificate bundle on your local file system.
+`</path/to/example-ca.crt>` is the path to the CA certificate bundle on your local file system.
 
 . Update the cluster-wide proxy configuration with the newly created config map:
 +

diff --git a/security/certificates/updating-ca-bundle.adoc b/security/certificates/updating-ca-bundle.adoc
@@ -6,6 +6,8 @@ include::_attributes/common-attributes.adoc[]
 
 toc::[]
 
+[role="_abstract"]
+To trust custom certificate authorities for egress connections in {product-title}, you can update the CA bundle by specifying custom CA certificates in the cluster-wide proxy configuration.
 
 include::modules/ca-bundle-understanding.adoc[leveloffset=+1]
-Original file line number
+Diff line change
@@ Expand Up / @@ -6,6 +6,8 @@ include::_attributes/common-attributes.adoc[] @@
     toc::[]
+    [role="_abstract"]
+    To trust custom certificate authorities for egress connections in {product-title}, you can update the CA bundle by specifying custom CA certificates in the cluster-wide proxy configuration.
     include::modules/ca-bundle-understanding.adoc[leveloffset=+1]
@@ Expand Down @@