Open mikej888 opened 11 months ago
It looked like the playbook now needs to provide values for cert_manager_tls_cert_file
and cert_manager_tls_key_file
I createda self-signed private key and public certificate with 1 year validity:
$ openssl req -x509 -newkey rsa:4096 -keyout teleport-key.pem -out teleport-cert.pem \
-sha256 -days 365 -nodes \
-subj "/C=UK/ST=Scotland/L=Edinburgh/O=UniversityOfEdinburgh/OU=EPCC/CN=teleport"
I updated 1-vm-setup-and-deploy.yaml
:
##############################
#### dare.common.microk8s ####
##############################
# plugins to enable for microk8s
microk8s_plugins:
dns: true
ingress: true
cert-manager: true
hostpath-storage: true
...
+ cert_manager_tls_cert_file: "teleport-cert.pem"
+ cert_manager_tls_key_file: "teleport-key.pem"
Reran playbook:
$ ansible-playbook -i inventories/eidf-tre-teleport.yaml 1-vm-setup-and-deploy.yaml -v
...
PLAY RECAP *********************************************************************
single_host : ok=115 changed=49 unreachable=0 failed=0 skipped=44 rescued=0 ignored=1
Is creating the certificate and keys in this way what was required? Thanks!
Running
monolithic_mk8s_example/1-vm-setup-and-deploy.yaml
(originally from DARE-SeRP-Dev-Deployment Version: 43f688f (Thu Sep 14 17:15:42 2023 +0100)main
branch) now fails with the currentdare.common
collection.The
dare.common
version I'd used up to now just predated commit 0df324f, Tue Oct 3 11:52:38 2023 +0100 fix(prom-stack): use server side apply for argo due to bundle size (#95).From the commits after that it seems the problem is due to changes at commit f35d8f5, Wed Oct 11 12:53:06 2023 +0100 feat(mk8s): configure cert-manager with clusterIssuer as part of microk8s installation (#100).