From 1fe1c756ab9059003c3e22640647cf4bdb01b63e Mon Sep 17 00:00:00 2001
From: Alexander Scheel <alex.scheel@hashicorp.com>
Date: Mon, 20 Mar 2023 12:24:05 -0400
Subject: [PATCH] Add known issue text for PKI revocation (#19632)

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
---
 website/content/docs/upgrading/upgrade-to-1.13.x.mdx | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/website/content/docs/upgrading/upgrade-to-1.13.x.mdx b/website/content/docs/upgrading/upgrade-to-1.13.x.mdx
index 71254b098..be691b5ba 100644
--- a/website/content/docs/upgrading/upgrade-to-1.13.x.mdx
+++ b/website/content/docs/upgrading/upgrade-to-1.13.x.mdx
@@ -81,3 +81,15 @@ are unaffected.
 @include 'tokenization-rotation-persistence.mdx'
 
 @include 'ocsp-redirect.mdx'
+
+### PKI Revocation Request Forwarding
+
+If a revocation request comes in to a standby or performance secondary node,
+for a certificate that is present locally, the request will not be correctly
+forwarded to the active node of this cluster.
+
+As a workaround, submit revocation requests to the active node only.
+
+#### Impacted Versions
+
+Affects Vault 1.13.0 only.