由于Kubernetes Ingress Conroller假证书而无法工作的申请
我正在尝试使用Kubernetes和Rancher部署一个应用程序,但是我遇到了“此站点的证书无效”的错误。如何将证书从Kubernetes Ingress Conroller Fake证书更改为另一个证书?我应该从牧场主还是从命令行进行?
I'm trying to deploy an app using Kubernetes and Rancher,but I get the error "The certificate for this site is not valid." How can I change the certificate from Kubernetes Ingress Conroller Fake Certificate to another certificate? Should I do it from Rancher or from command line?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
进一步证书的签名证书?
入口TLS的基本要求是TLS/SSL证书。您可以通过以下方式获得这些证书。
自签名证书: TLS证书由我们自己的证书授权授权创建和签名。这是开发环境的绝佳选择,您可以在其中与团队共享rootca,以便浏览器可以信任证书。查看创建自签名证书博客以创建自己的证书。
购买SSL证书:您需要从浏览器&生产用例的操作系统。查看顶级SSL提供商以获取更多信息。
使用letsencrpt证书:letsencrypt是一个非营利性可信赖的证书机构,提供免费的TLS证书。
有关更多信息,请遵循此文档。
要更新证书,请按照以下步骤:
更新(Ingress)HTTPS负载平衡器的SSL证书。
创建群集时,请执行以下命令:
apiversion:扩展/v1beta1
类型:Ingress
Metadata:
name:Ingress
注释:规格:
规格:
TLS:
后端:
有关更多信息,请遵循此。另请参阅对牧场服务器kubernetes群集进行故障排除。
Ingress Conroller Fake Certificate to another certificate?
The basic requirement for ingress TLS is a TLS/SSL certificate. You can obtain these certificates in the following ways.
Self-Signed Certificates: TLS certificate created and signed by our own Certificage Authority. It is great optionfor development environments where you can share the rootCA with the team so that browsers can trust the certificate. Check out create self-signed certificate blog to create your own certificates.
Purchase an SSL Certificate: You need to buy an SSL certificate from a well-known certificate authority trusted by browsers & operating systems for production use cases. Check out the top SSL Providers for more information.
Use Letsencrpt Certificate: Letsencrypt is a non-profit trusted certificate authority that provides free TLS certificates.
For more information follow this document .
To update the certificate follow these steps:
To update ssl certificate for your (ingress) https load balancer.
When you created the cluster please executed these commands:
apiVersion: extensions/v1beta1
kind: Ingress
metadata:
name: ingress
annotations:
spec:
tls:
backend:
For more information follow this document. also refer to troubleshooting the Rancher server kubernetes cluster.