EngineerBetter / control-tower

Deploy and operate Concourse CI in a single command
https://www.engineerbetter.com
Apache License 2.0
121 stars 39 forks source link

Unable to access Credhub CLI #331

Open jonathon-m opened 1 year ago

jonathon-m commented 1 year ago

Hey team, thanks for the great work on Control Tower.

I'm having trouble accessing credhub to add some keys to my deployment. The error returned when attempting credhub login is

Post "https://{custom-domain}:8443/oauth/token": dial tcp 172.21.0.8:8443: i/o timeout

I can access this address via my browser, however the certificate is expired which I think is causing the issue. I've attempted login using both --skip-tls-validation and --server but with no progress.

How can I fix this certificate, or access Credhub with the current cert? Thanks!

Control tower version is 0.32.0, and was deployed with:

control-tower deploy \
  --iaas aws \
  --domain {custom-domain} \
  --region {region} \
  --workers 1 \
  --worker-type m5 \
  --worker-size 2xlarge \
  --web-size large \
  --db-size small \
  --allow-ips {whitelisted-ips} \
  --github-auth-client-id $GITHUB_AUTH_CLIENT_ID \
  --github-auth-client-secret $GITHUB_AUTH_CLIENT_SECRET \
  cdp-ci