Cert Manager needs to be updated. IngressClassName incompatibility.

[mehmetaydogduu]

I lost whole day with that. Certs aren't work because auto created ingress by cert-manager is not functional. Old annotation kubernetes.io/ingress.class doesn't work anymore. According to the docs, The field ingressClassName was added in cert-manager 1.12., so we need to upgrade to at least 1.12 to get rid of the issue.

MicroK8S 1.28.3: microk8s kubectl cert-manager version

Client Version: util.Version{GitVersion:"v1.12.7", GitCommit:"6d7629ba42b946978e3baaa75348c851f7ef9134", GitTreeState:"", GoVersion:"go1.20.12", Compiler:"gc", Platform:"linux/amd64"}
Server Version: &versionchecker.Version{Detected:"v1.8.0", Sources:map[string]string{"crdLabelVersion":"v1.8.0"}}

As we can see MicroK8S Addon doesn't have ingressClassName property. HTTP01 check is failing.

[cnu80]

Please update cert-manager. With this version, it is not possible to use an onprem acme like step-ca. The option: caBundle is missing.

[cnu80]

I tested cert-manager with the official installation instruction and microk8s. I used the helm option and configured an acme issuer with my onprem acme ca. (step-ca).

My configuration:

• single node microk8s v1.28
• cert-manager v1.13.3
• step-ca

nginx-ingress with tls is working out of the box.