DevOps Stack Exchange
DevOps Stack Exchange

Questions tagged [cert-manager]

16 questions
5
votes
1 answer

Why can the certificate not be found by the Ingress Controller, while the certificate has been issued?

kubectl logs nginx-ingress-controller-X -n nginx-ingress W1222 06:52:04.575115 8 controller.go:1058] Error getting SSL certificate "app/app-tls": local SSL certificate app/app-tls was not found. Using default certificate W1222 06:52:09.955475 …
030
  • 13,383
  • 17
  • 76
  • 178
4
votes
1 answer

What is the best practise way to expose a service over https in kubernetes without exposing it to the internet?

Coming from Docker When I was still using Docker for running my services I had an nginx reverse proxy that handled issuing and signing certificates through letsencrypt automatically. Using this setup, I was able to host a public site…
Hannes Knutsson
  • 81
  • 4
2
votes
0 answers

Ingress losing some settings on restart (k3s)

I'm experimenting with some Kubernetes stuff TrueNAS Scale, which comes with k3s (1.25.3) installed. I installed one of the TrueCharts apps (https://truecharts.org/) but the settings for it appear buggy. I had configured it to use a clusterissuer,…
Thorarin
  • 121
  • 2
2
votes
1 answer

How to get public key from cert-manager?

I need to get a public key from cert manager from bash. How to do it properly? I can see the private key in kubernetes secrets; how to get public key that can be safely shared?
Karel Bílek
  • 121
  • 5
1
vote
1 answer

Cert-manager challenge failing self check

I am currently facing an issue with cert-manager while trying to obtain a Let's Encrypt certificate for my Kubernetes cluster running on Scaleway Kapsule. I have successfully installed cert-manager from the helm chart. However, I am now encountering…
cvk
  • 111
  • 2
1
vote
2 answers

Unable to configure cert-manager. Wrong status code '403', expected '200'

I', trying to configure a cert-manager in a Baremetal server. I followed this link & this one the k describe challenge my-domain.com-xqwh4-4005106243-2059835058 get Status: Presented: true Processing: true Reason: Waiting for HTTP-01…
Math
  • 111
  • 3
1
vote
1 answer

Issue getting HTTPS working for subdomain despite "Certificate issued successfully"

Part of my struggle to learn this, I think, is that cert-manager is updated pretty regularly so a lot of the tutorials, blog posts, questions, and courses I have read or taken are no longer relevant. For example, when I initially started learning…
cheslijones
  • 155
  • 1
  • 9
1
vote
1 answer

Nginx unable to get SSL cert to work

I'm trying to get a kubernetes cluster using the nginx ingress controller and cert manager to get an SSL cert from lets encrypt. Currently is appears the cert has been issued however I am unable to get it to load properly inside Chrome or via…
joshk132
  • 465
  • 10
  • 22
0
votes
0 answers

HTTPS endpoint in Docker produces ERR_CERT_AUTHORITY_INVALID

I get a warning on https://locahost:7001 telling me Your connection is not private and giving the message net::ERR_CERT_AUTHORITY_INVALID. I want to avoid mouting a local directory. Instead, I decided to secrets and services. Unfortunately, I still…
Konrad Viltersten
  • 101
  • 2
0
votes
1 answer

kubernetes rancher - self singed certificate doesn't let me access the site

I want to use a self-signed certificate for Rancher, but instead of the Firefox error: Warning: Potential Security Risk Ahead Where I can usually accept the risk and continue, I get this: Did Not Connect: Potential Security Issue Error Code:…
Bog
  • 101
  • 4
0
votes
1 answer

cert-manager and cluster issuer - not registering subdomain

I have this issue with one particular domain. I have a setup in AWS where I deploy apps in EKS via helm-charts (ArgoCD) and if the helm chart has ingress defined ... it registers the domain in Route53 and maps it to that pod ... It works great for…
Mr.P
  • 1
  • 2
0
votes
0 answers

Issue static wildcard certificate with cert-manager

Is there a way to issue custom static wildcard certificate with cert-manager? We have a wildcard certificate and we want cert-manager to issue all Ingress certificates with this wildcard certificate. The reason why we don't use static tls secret for…
HBasiri
  • 101
0
votes
1 answer

Error configuring TLS error: secret xxx does not exist

I am using "Traefik", "cert-mangaer", and "Let's Encrypt". Here is my ClusterIssuer file apiVersion: cert-manager.io/v1 kind: ClusterIssuer metadata: name: production-lets-encrypt-issuer namespace: production-hm-cert-manager spec: acme: …
Hongbo Miao
  • 111
  • 1
  • 7
0
votes
1 answer

Enforce https on portainer with cert-manager and letsencrypt after initial setup

I have a running k3s cluster with portainer and helm, and I just got cert-manager with letsencrypt set up as a ClusterIssuer Now I would like to enforce https and use the certificate I created for portainer: apiVersion: cert-manager.io/v1 kind:…
JoSSte
  • 133
  • 1
  • 10
0
votes
1 answer

Why is my GCP managed Cert not working with kubernetes

I have the following that seems to work... apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: test-ingress namespace: test annotations: kubernetes.io/ingress.global-static-ip-name: thanos-static labels: app:…
Jackie
  • 151
  • 5
1
2