Stack Overflow
Stack Overflow

Questions tagged [cert-manager]

For questions about the open source cert-manager project for Kubernetes, a CNCF project.

387 questions
7
votes
0 answers

cert-manager on kubernetes without hairpin nat

I have a bare metal kubernetes deployment running on vmware vcloud director and I am struggling to setup cert-manager to manage ssl certificates. As described in following issue, "Challenge" always fails with self-check to cluster's domain…
savas
  • 241
  • 2
  • 9
7
votes
3 answers

Certificate issued by cert manager reads as "issued by: cert-manager.local" instead of Let's Encrypt and does not work

When I browse my website from Chrome, it says that the certificate is invalid, and if I check the details, this is what I see: Issued to: Common Name (CN) test.x.example.com Organization (O) cert-manager Organizational Unit (OU)
rubik
  • 8,814
  • 9
  • 58
  • 88
7
votes
2 answers

How to setup letsencrypt cert issuer for kubernetes on AWS EKS with Terraform

I'm trying to setup letsencrypt cert-issuer on kubernetes cluster. My terraform looks like this: resource "helm_release" "cert_manager" { keyring = "" name = "cert-manager" chart = "stable/cert-manager" namespace = "kube-system" …
amorfis
  • 15,390
  • 15
  • 77
  • 125
6
votes
1 answer

Cert-Manager and Nginx under one umbrella helm chart in AKS fails to issue my certificates

My experience with Kubernetes is relatively small about a month since I have started learning and experimenting. I am migrating my setup from azure app services to AKS and I have encountered some issues with nginx ingress controller and cert-manager…
Márton Péntek
  • 100
  • 5
6
votes
3 answers

cert-manager HTTP01 certificate challenge is inaccessible when rewrite-target is enabled

We have a dozen of services exposed using a ingress-nginx controller in GKE. In order to route the traffic correctly on the same domain name, we need to use a rewrite-target rule. The services worked well without any maintenance since their launch…
animaonline
  • 3,715
  • 5
  • 30
  • 57
6
votes
2 answers

setup letsencrypt ClusterIssuer with terraform

i have a terraform config that create a kubernetes(GKE) on GCP, install ingress and cert-manager using Helm. the only part missing is the letsencrypt ClusterIssuer (when i deploy the letsencrypt.yaml manually all works fine). my Terraform config: #…
gharbi.bdr
  • 147
  • 2
  • 9
6
votes
2 answers

Istio Kubernetes Ingress with Cert-Manager: no matches for kind "Certificate" in version "certmanager.k8s.io/v1alpha1"

I'm trying to configure HTTPS for my K8s/Istio cluster. I'm following this official tutorial step by step multiple times from scratch and get the same error every time when try to create a Certificate resource. no matches for kind "Certificate" in…
Max
  • 404
  • 2
  • 17
  • 39
6
votes
2 answers

Upgrading from Helm stable/cert-manager to jetstack/cert-manager

We have a production AKS cluster that has a stable/cert-manager helm chart installed to allow using Let's Encrypt certificates. The current version installed is cert-manager-v0.6.0 in the kube-system namespace. Let's Encrypt is to stop support for…
RVid
  • 1,207
  • 1
  • 14
  • 31
6
votes
2 answers

Wildcard Let's Encrypt certificates with cert-manager, nginx ingress, cloudflare in kubernetes how to fix?

I have Cloudflare DNS for manage my domain. I created an A-record *.play.mydomain.com in Cloudflare. In Kubernetes (GKE) I created Issuer apiVersion: certmanager.k8s.io/v1alpha1 kind: Issuer metadata: name: letsencrypt-prod-wildcard namespace:…
jonhpols
  • 61
  • 1
  • 3
5
votes
2 answers

Understand Capabilities.APIVersions.Has in helm

I have a question about.Capabilities.APIVersions.Has - I am not sure how it works I have the following function: {{- define "fybrik.certManagerApiVersion" -}} {{- if .Capabilities.APIVersions.Has "cert-manager.io/v1beta1"…
erez
  • 151
  • 2
  • 3
  • 9
5
votes
1 answer

nginx ingress-controller error : admission webhook "validate.nginx.ingress.kubernetes.io" denied the request host and path already defined

Test1 I created an ingress with a cert-manager annotation. This one fails with the following error "nginx ingress-controller error : admission webhook "validate.nginx.ingress.kubernetes.io" denied the request host and path already defined " Test2 I…
hpanneti
  • 51
  • 1
  • 1
  • 2
5
votes
2 answers

Error from server (InternalError): error when creating "v2_0_0_full.yaml": Internal error occurred: failed calling webhook "

I am trying to follow the instruction of AWS to create an ALB for EKS (Elastic K8s Services in AWS). The instruction is here: https://docs.aws.amazon.com/eks/latest/userguide/alb-ingress.html I have problems at step 7 (Install the controller…
Pavel
  • 111
  • 2
  • 8
5
votes
3 answers

cert manager is failing with Waiting for dns-01 challenge propagation: Could not determine authoritative nameservers

I have created cert-manager on aks-engine using below command kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v0.12.0/cert-manager.yaml my certificate spec issuer spec Im using nginx as ingress, I…
Vineesha.C
  • 333
  • 3
  • 13
5
votes
3 answers

Kubernetes cert-manager GoDaddy

I'm trying to apply SSL to my kubernetes clusters (production & staging environment), but for now only on staging. I successfully installed the cert-manager, and since I have a 5 subdomains, I want to use wildcards, so I want to configure it with…
JC97
  • 1,530
  • 2
  • 23
  • 44
5
votes
1 answer

Kubernetes Let's Encrypt cert-manager Error secret not found

I followed this tutorial to get let's encrypt in kubernetes : https://github.com/ahmetb/gke-letsencrypt/blob/master/ I encountered some problems, cert-manager don't create the needed secret. Could you help me please to resolve this problem…
morgane1806
  • 75
  • 1
  • 5
1
2
3
25 26