Rancher Downstream Cluster CA Certificate

Hey Guys
I need to provide a CA Certificate when acting with a hashicorp vault injection method.
Which CA Certificate of my downstream cluster do I need to provide for this action?

Thanks for your help!

Just found it out.
I provisioned the downstreamcluster with terraform, but the configuration for a authorized endpoint (which should be default true) wasn’t set. So I set it to true an got now some authorized endpoints over my master nodes with the related ca certificates. I took one an configured the kubernetes vault auth. Now it’s working fine. Probably gonna open a github issue for the terraform provider.