Automatically manage Certificates in VKS with Nginx Ingress Controller, Cert-Manager, and Let's Encr
Necessary conditions
You have initialized the Cluster on the VKS system according to the instructions here and the VNGCloud LoadBalancer Controller has been installed on your cluster .
Next, make sure you have a domain registered and in use.
Finally, you need an email address to perform the Certificate management test.
Next, you need to install nginx-ingress-controller with the command:
helm install nginx-ingress-controller oci://ghcr.io/nginxinc/charts/nginx-ingress --namespace kube-system
Install Cert-Manager
Cert-Manager is responsible for automatically issuing and renewing certificates from Let's Encrypt.
Use Helm to install Cert-Manager via command:
helm install \
cert-manager jetstack/cert-manager \
--namespace cert-manager \
--create-namespace \
--version v1.16.2 \
--set crds.enabled=true
Steps to follow
Deploy sample app
Let's deploy a sample app, for example:
kubectl create deployment echo-server --image=mccutchen/go-httpbin
kubectl expose deployment echo-server --name=clusterip --port=80 --target-port=8080 --type=ClusterIP
Issuer Configuration
Issuer is the component that helps Cert-Manager communicate with Let's Encrypt to issue certificates.
PreviousExpose a service through vLB Layer7NextPreserve Source IP when using NLB and Nginx LoadBalancer Controller
Last updated