diff --git a/charts/kubezeroCertManager/Chart.yaml b/charts/kubezeroCertManager/Chart.yaml
index 0221ca00..21436077 100644
--- a/charts/kubezeroCertManager/Chart.yaml
+++ b/charts/kubezeroCertManager/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: kubezeroCertManager
 description: KubeZero Umbrella Chart for cert-manager
 type: application
-version: 0.1.0
+version: 0.1.1
 home: https://kubezero.com
 keywords:
   - kubezero
diff --git a/charts/kubezeroCertManager/templates/cluster-issuer.yaml b/charts/kubezeroCertManager/templates/cluster-issuer.yaml
new file mode 100644
index 00000000..c84a0347
--- /dev/null
+++ b/charts/kubezeroCertManager/templates/cluster-issuer.yaml
@@ -0,0 +1,14 @@
+{{- if .Values.clusterIssuer.name }}
+apiVersion: cert-manager.io/v1alpha2
+kind: ClusterIssuer
+metadata:
+  name: {{ .Values.clusterIssuer.name }}
+spec:
+  acme:
+    server: {{ .Values.clusterIssuer.server }}
+    email: {{ .Values.clusterIssuer.email }}
+    privateKeySecretRef:
+      name: {{ .Values.clusterIssuer.name }}
+    solvers:
+{{ toYaml .Values.clusterIssuer.solvers | indent 6 }}
+{{- end }}
diff --git a/charts/kubezeroCertManager/values.yaml b/charts/kubezeroCertManager/values.yaml
index 77eb81d6..5887d666 100644
--- a/charts/kubezeroCertManager/values.yaml
+++ b/charts/kubezeroCertManager/values.yaml
@@ -1,3 +1,13 @@
+clusterIssuer: {}
+# name: letsencrypt-dns-prod
+# server: https://acme-v02.api.letsencrypt.org/directory
+# email: admin@example.com
+# solvers:
+#   - dns01:
+#       route53:
+#         region: us-west-2
+#         hostedZoneID: 1234567890
+
 cert-manager:
   tolerations:
   - key: node-role.kubernetes.io/master