Skip to content

Latest commit

 

History

History
22 lines (17 loc) · 671 Bytes

self_signed.md

File metadata and controls

22 lines (17 loc) · 671 Bytes
Raw

Self signed TLS Certificate

This is ok for testing, but not recommended for production (replace infrabox.example.com with your domain):

openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/tls.key -out /tmp/tls.crt -subj "/CN=infrabox.example.com"

Now create a Kubernetes secret for the certificate:

kubectl create -n infrabox-system secret tls infrabox-tls-certs --key /tmp/tls.key --cert /tmp/tls.crt

It's important to pass the following option when installing with helm:

general:
    dont_check_certificates: false
job:
    docker_daemon_config: |-
        {"insecure-registries": ["infrabox.example.com"]}