Stack Overflow
Stack Overflow

Questions tagged [cert-manager]

For questions about the open source cert-manager project for Kubernetes, a CNCF project.

387 questions
5
votes
2 answers

Wildcard SSL certificate with subdomain redirect in Kubernetes

I've configured my Kubernetes to use one wildcard SSL certificate to all my apps using cert-manager and letsencrypt, now the problem is that I can't configure subdomain redirects cause Ingress is kinda "stiff". Here's how I'm trying to achieve…
nicolasl
  • 421
  • 3
  • 16
4
votes
1 answer

Upgrade cert-manager to v1.8.2

I removing other versions from cert-manager. After that i install the new version with helm using. Installation works fine. but when i use the command: $ kubectl get orders,challenges,clusterissuers Error from server: request to convert CR from an…
Lucas Borges
  • 51
  • 3
4
votes
1 answer

Migrate Certificate from certmanager.k8s.io/v1alpha1 to cert-manager.io/v1

I am migrating Certificate from certmanager.k8s.io/v1alpha1 to cert-manager.io/v1, however, I am getting this error error validating data: ValidationError(Certificate.spec): unknown field "acme" in io.cert-manager.v1.Certificate.spec My…
Rodrigo
  • 135
  • 4
  • 45
  • 107
4
votes
2 answers

Cert-manager stopped renewing Let'S Encrypt certificates after upgrading to AKS 1.20.7

Our AKS cluster was configured to auto-renew Let's Encrypt certificates through Ingress Cert-Manager annotation and this worked perfectly until we upgraded to AKS 1.20.7. This then stopped working and the certificates started to expire without them…
dmagic
  • 49
  • 1
  • 3
4
votes
1 answer

cert-manager: no configured challenge solvers can be used for this challenge

I followed this instruction to set up a cert-manager on my EKS cluster https://cert-manager.io/docs/tutorials/acme/ingress/. here is my ingress apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: test annotations: …
user3908406
  • 1,416
  • 1
  • 18
  • 32
4
votes
1 answer

cert-manager letsencrypt issuing invalid certs

I followed this tutorial to serve a basic application using the NGINX Ingrss Controller, and cert-manager with letsencrypt. I am able to visit the website, but the SSL certificate is broken, saying Issued By: (STAGING) Artificial Apricot R3. This is…
chrispytoes
  • 1,714
  • 1
  • 20
  • 53
4
votes
1 answer

Generating certificate for local dev environment in WSL2

Having difficulty getting a certificate installed in a local development environment that is isolated to WSL2. I've done the exact same steps in macOS and Linux, and have had zero issues. The steps are the following: # Download and install mkcert if…
cjones
  • 8,384
  • 17
  • 81
  • 175
4
votes
1 answer

Istio: How to redirect to HTTPS except for /.well-known/acme-challenge

I want the traffic thar comes to my cluster as HTTP to be redirected to HTTPS. However, the cluster receives requests from hundreds of domains that change dinamically (creating new certs with cert-manager). So I want the redirect to happen only when…
g_lasso
  • 141
  • 8
4
votes
2 answers

Cert-manager fails on kubernetes with webhooks

I'm following the Kubernetes install instructions for Helm: https://docs.cert-manager.io/en/latest/getting-started/install/kubernetes.html With Cert-manager v0.81 on K8 v1.15, Ubuntu 18.04 on-premise. When I get to testing the installation, I get…
Isaack Rasmussen
  • 457
  • 4
  • 11
4
votes
0 answers

How to fix "Not syncing ingress default/test-app as it does not contain necessary annotations"

I followed this great guide on enabling auto TLS creation on kubernetes: https://akomljen.com/get-automatic-https-with-lets-encrypt-and-kubernetes-ingress/ You set up cert-manager against a custom resource ClusterIssuer with letsencrypt and use the…
CodingNoob123
  • 143
  • 2
  • 9
4
votes
1 answer

Failed to list *v1alpha1.Order: orders.certmanager.k8s.io is forbidden

I configured automated SSL certificate management few months ago as described here: http://docs.cert-manager.io/en/latest/tutorials/acme/dns-validation.html for domains: .com and dev..com. So I have two namespaces: prod for…
Kirill
  • 7,580
  • 6
  • 44
  • 95
3
votes
1 answer

From Ingress to IngressRoute with CertManager, HTTP01 Challenge and Let's Encrypt ClusterIssuer

I have a Kubernetes (v1.25.2) cluster running with cert-manager 1.11.0 and Traefik 2.9.6. For some services I want Let's Encrypt to auto sign certificates. For some reason, it feels nicer, to use IngressRoute instead of Ingress. I just can't get…
Danielson
  • 2,605
  • 2
  • 28
  • 51
3
votes
1 answer

Waiting for HTTP-01 challenge propagation: wrong status code '404', expected '200'

I just set up cert-manager on Kubernetes GCP but when I check my logs I get this error: cert-manager/challenges "msg"="propagation check failed" "error"="wrong status code '404', expected '200'" "dnsName"="api.lumiwealth.com"…
Rob
  • 7,028
  • 15
  • 63
  • 95
3
votes
3 answers

In Kubernetes, how to setup multiple hosts in one ingress with let's encrypt certificates

I have setup a backend and frontend service running on Kubernetes. Frontend would be www..com and backend would be api..com I need to expose and secure both services. I wish to use one ingress. I want to use free certificates…
XintongTheCoder
  • 142
  • 2
  • 7
3
votes
0 answers

helm chart failing with service "cert-manager-webhook" not found

I am trying to deploy cert-manager/webhook-example using helm chart. But getting following error. % helm install cert-manager-webhook ./cert-manager-webhook Error: INSTALLATION FAILED: Internal error occurred: failed calling webhook…
roy
  • 6,344
  • 24
  • 92
  • 174
1 2
3
25 26