I follow instruction described here https://learn.microsoft.com/en-us/azure/aks/keda-about to setup keda with AKS and have a concrete workflow using self-hosted Azuredevops agent.
I do confirm everything is working fine when my agent pool is hosted on AzureDevOps service. I would like to do same with azuredevops server. Here what i get:
- AKS is connected to VNET which is connected to my on-premises network
- Self-hosted agent can register to my AzureDevOps server instance
- To make it works i needed to customize my etc/hosts file and also add the .crt certificate required by AzureDevops for registration
- So far so good my Self-hosted agent do the job for pipeline build&release
- my Agent belongs to namespace 'default'
My issue is related to Keda which failed because of certificate
ERROR Failed to create new HPA resource {"controller": "scaledobject", "controllerGroup": "keda.sh", "controllerKind": "ScaledObject", "scaledObject": {"name":"azure-pipelines-scaledobject","namespace":"default"}, "namespace": "default", "name": "azure-pipelines-scaledobject", "reconcileID": "76554c6b-3876-4e83-8ce2-b6966e9b10ec", "HPA.Namespace": "default", "HPA.Name": "keda-hpa-azure-pipelines-scaledobject", "error": "error parsing azure Pipelines metadata: Get \"https://myazuredevops.mydomain.lan/MyCollection/_apis/distributedtask/pools?poolName=My-pool\": x509: certificate signed by unknown authority"}
As you can see keda-operator tries to join my Azuredevops instance with name 'myazuredevops.mydomain.lan' but failed because of certificate.
I try to setup my custom certificate as described here https://learn.microsoft.com/en-us/azure/aks/custom-certificate-authority but i am not sure to doing things good.
Is there any member who succedeed to setup keda with AzureDevopsServer ? How do you solve certificate issue ?
My understanding is that we could configure a certificate at AKS cluster and then any pod could beneficiate it ? Is it how it works ? If yes how can achieve that?
Thx
