For questions about the open source cert-manager project for Kubernetes, a CNCF project.
Questions tagged [cert-manager]
387 questions
3
votes
0 answers
Kubeflow installation on existing EKS cluster with cert-manager already installed
I have an EKS cluster (1.18 version)in the pre-production environment.
Now I would like to use this cluster to install Kubeflow (1.4 version).
Unfortunately, when I try to install it with the kfctl apply -V -f kfctl_aws.yaml
I get this…
UNix3
- 31
- 2
3
votes
1 answer
Issue with Self-signed certificate with Cert-Manager in Kubernetes
I'm trying to add a self-signed certificate in my AKS cluster using Cert-Manager.
I created a ClusterIssuer for the CA certificate (to sign the certificate) and a second ClusterIssuer for the Certificate (self-signed) I want to use.
I am not sure if…
X T
- 445
- 6
- 22
3
votes
2 answers
Replace Kubernetes Ingress Controller Fake Certificate fake on nginx-ingress-controller
We are running an application on k8s cluster on GKE.
We are using an nginx-ingress-controller as external load-balancer Service which is reachable on, let's say, https://12.345.67.98 . We are facing an issue that when we directly access the…
c_p_bacon
- 31
- 1
- 2
3
votes
2 answers
cert-manager challenge failed with connection timeout. Can connect manually to URL from internet. What is next debugging step?
I'm new to Kubernetes and to supporting a particular website hosted in Kubernetes. I'm trying to figure out why cert-manager did not renew the certificate in the QA environment a few weeks back.
Looking at the details of various certificate-related…
Simon Elms
- 17,832
- 21
- 87
- 103
3
votes
1 answer
SSL certificates from Let’s Encrypt in your Kubernetes Ingress via cert-manager
I am trying to get ingress with cert-manager v0.16.0 working for let's encrypt certs. I use microk8s and have followed a couple of tutorials, none of them let me to the goal.
With this tutorialLink I am stuck at creating the Issuer and get an error…
user637338
- 2,565
- 1
- 25
- 26
3
votes
2 answers
Kubectl delete tls when no namspace
There were a namespace "sandbox" on the node which was deleted, but there is still a challenge for a certificate "echo-tls".
But i can not access anymore sandbox namespace to delete this cert.
Could anyone help me deleting this resource ?
Here are…
Julien SIBILLE
- 31
- 5
3
votes
1 answer
ClusterIssuer with Cloudflare based DNS solver
I'm trying to install the cert-manager ClusterIssuer on a AKS, and because the cluster is behind Azure Application Gateway I've gone down the route of using a DNS solver rather the HTTP. However, the challenge fails with an error calling the…
Mark
- 816
- 1
- 9
- 27
3
votes
2 answers
Kubernetes Nginx Ingress to pod communication over https
I am doing some research on how to implement https secure connection between Nginx Ingress -> backend services. So far I have SSL setup in Nginx Ingress controller that uses Lets Encrypt cert manager to rotate certificate using http-01…
Ray
- 1,095
- 3
- 18
- 43
3
votes
1 answer
Move cert-manager certificate to another Kubernetes cluster
I'm in the process of moving web services from one Kubernetes cluster to another. The goal is to do that without service interruption.
This is difficult with cert-manager and HTTP challenges, because cert-manager on the new cluster can only retrieve…
theDmi
- 17,546
- 6
- 71
- 138
3
votes
1 answer
cert-manager - Acme Http Solver Returns 404
Have a kubernetes cluster with an nginx ingress to a service which I am trying to set up with https access using cert-manager and ACME ClusterIssuer.
The steps I have followed from cert-manager I am reasonably happy with but I am currently at the…
Going Bananas
- 2,265
- 3
- 43
- 83
3
votes
1 answer
Istio Gateway Fail To Connect Via HTTPS
Deployments in a GKE cluster with Istio is working correctly via HTTP. But when i tried to secure it with cert-manager with following resources, HTTPS request fails state like so on curl
`Immediate connect fail for 64:ff9b::2247:fd8a: Network is…
Yunus Einsteinium
- 1,102
- 4
- 21
- 55
3
votes
1 answer
Cert-Manager dns01 challenge order pending
Followed steps mentioned at https://cert-manager.io/docs/installation/kubernetes/
# Kubernetes 1.16+
$ kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v1.0.3/cert-manager.yaml
$ kubectl -n cert-manager…
roy
- 6,344
- 24
- 92
- 174
3
votes
2 answers
How to reference secrets generated by cert-manager with hash suffix in name?
The scenario: I'm having Apache Pulsar v2.6.0 deployed in Rancher Kubernetes, together with jetstack/cert-manager:
helm install cert-manager jetstack/cert-manager --namespace cert-manager --set installCRDs=true
helm install --values ./values.yaml…
user14321182
- 51
- 5
3
votes
1 answer
Cert-manager fails to complete dns01 challenge with cloudflare
Cert-manager various versions ( 15 and 16 ) installed on both k3s version v1.18.8+k3s1 and docker-desktop version v1.16.6-beta.0 using the following command:
helm install cert-manager \
--namespace cert-manager jetstack/cert-manager \
--version…
sph1982
- 31
- 1
- 3
3
votes
2 answers
How to to enable HTTPS on EKS using nginx-ingress and cert-manager with route53 DNS?
So, I have a Kubernetes cluster running on aws-eks, it's only a test cluster to learn and build a production cluster at the moment.
I've already managed to make everything I need to work except for the SSL certificate! :(
I'm using cert-manager to…
Bruno Lira
- 177
- 3
- 13