From 15e824c1afc895b962ca681b8e268403f98bf912 Mon Sep 17 00:00:00 2001
From: Kelsey Hightower <kelsey.hightower@gmail.com>
Date: Thu, 7 Jul 2016 07:52:54 -0700
Subject: [PATCH] update docs

---
 docs/certificate-authority.md | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/docs/certificate-authority.md b/docs/certificate-authority.md
index 2d07974..f5e2f4a 100644
--- a/docs/certificate-authority.md
+++ b/docs/certificate-authority.md
@@ -1,12 +1,20 @@
-# Certificate Authority
+# Setting up a Certificate Authority and TLS Cert Generation
 
 In this lab you will setup the necessary PKI infrastructure to secure the Kuberentes components. This lab will leverage CloudFlare's PKI toolkit, [cfssl](https://github.com/cloudflare/cfssl), to bootstrap a Certificate Authority and generate TLS certificates.
 
+This lab will setup a Certificate Authority and generated a single set of TLS certificates that can be used to secure the following Kubernetes components:
+
+* etcd
+* Kubernetes API Server
+* Kubernetes Kubelet
+
+In production you should strongly consider generating individual TLS certificates for each component.
+
 ## Install CFSSL
 
 Follow the [CFSSL installation guide](https://github.com/cloudflare/cfssl#installation) and install `cfssl` and `cfssljson` binaries.
 
-## Initialize a CA
+## Setting up a Certificate Authority
 
 ### Create the CA configuration file