TLS configuration explanation missing

[kdziurdz]

Hey! According to this commentary in config map I'd need to setup TLS in order scrape Prometheus metrics securely using HTTPS. The problem is that there is no advice how to provide such configuration OMS pod in running AKS cluster.

Pods that exposes Prometheus metrics endpoint, are only accessible via HTTPS. I have client cert, key and ca cert, and I'm able to scrape them using curl.

How can I connect those two pieces together and collect Prometheus metrics using OMS agent from secured endpoint? How to provide certificates to OMS agent? How to advice OMS agent to use provided certificates?

Regards

[austonli]

@vishiy, would be able to help review and clarify the answer?

[vishiy]

we dont have a way to point to a cert, yet. this was tracked, but because of lack of ask from many customers, we didn't prioritize this. If its blocking you, please confirm and we will prioritize this.