K
Q

Trust CA certificate on istio level

3/14/2019

I am using kubernetes and istio.

I need to call https service outside my mesh, and this called service using internal CA authority, which mean I need to trust the server side certificate.

Can I trust the certificate on istio level instead of each micro-service?

-- Suleiman Abualrob
client-certificates
istio
kubernetes
ssl-certificate

Similar Questions

communication between polipo and tor kubernetes deployment
How to give the input for the kubectl command?
k8s/python: How do I read a secret using the Kubernetes Python client?
Got certificaes tls.crt and tls.key, but browser still raise connection is not private

1 Answer

3/14/2019

you can do it using cert-manager & ingress probably which will manage the ssl certificates :

you can check it out more at :

https://www.digitalocean.com/community/tutorials/how-to-set-up-an-nginx-ingress-with-cert-manager-on-digitalocean-kubernetes

you can also refer documents of istio where there option for HTTPS for managed gateway: https://istio.io/docs/tasks/traffic-management/secure-ingress/

-- Harsh Manvar
Source: StackOverflow