K
Q

Using ssl in Ingress without cert-manager

2/13/2020

I'm trying to uses ssl in several Ingress on k8s. A first look up lead me to cert-manager but I can't make it work and I suspect that the cause is because my Cloud provider (ovh) is not supported.

I'm using kubernetes 1.17 and cert-manager 0.13.0

The first error I encountered was related to the web hook secret and no solutions worked for me.

Because of this I deployed cert-manager without web-hook but I still couldn't get a ClusterIssuer up and running. When I apply the following :

apiVersion: cert-manager.io/v1alpha2
kind: ClusterIssuer
metadata:
  name: letsencrypt-staging
spec:
  acme:
    email: leonard.panichi@gmail.com
    server: https://acme-v02.api.letsencrypt.org/directory
    privateKeySecretRef:
      name: letsencrypt-staging
    solvers:
    - http01:
        ingress:
          class: nginx

a clusterissuer is created but there is no Status when I run describe on it.

So, after new searches (and more than a day of struggling), I found that ovh might not be compatible with cert-manager which let me think that I'm loosing my time with this strategy. Hence I'm looking for a new strategy.

How can I use certbot, there is a docker image certbot/certbot, to create and renew a few ssl certificates in kubernetes secrets in order to use them in my Ingress ? Is there any other way that do not requiere GKE, AWS, something simple, portable, production ready, etc...

Sincerely, me

-- machinus
cert-manager
kubernetes
kubernetes-ingress
ovh
ssl

Similar Questions

return types for clientcmd.BuildConfigFromFlags
Openshift re-rollout failed latest deployment config
Helm nginx-ingress 404 error on all routes on GKE
busybox dns resolve not works in some nodes in kuberenetes

0 Answers