AKS AKS 入侵失败
原标题:letsencrypt cert request failing for AKS ingress
I m trying to set up an ingress with TLS and an automatically provisioned certificate as per the instructions here for a new AKS deployment.
I initially configured all this but failed to get the static IP address assigned to the LB because I used an older script to create the IP address with the wrong SKU. After fixing the IP address I tried to re-create the cluster issuer, ingress and certificate using the production server without success. The Error I see in the order from the following kubectl command:
kubectl describe order ao-tls-secret-12341234-12341234
Reason: Failed to finalize Order: 400 urn:ietf:params:acme:error:malformed: Error finalizing order :: certificate public key must be different than account key
I tried to switch over to the letsencrypt staging server and received a certificate back right away. Switched back to the production server and it s hanging again.
最佳回答
As the error says, you shouldn t be using the same secretName for both the Let s Encrypt account private key (the one referenced by issuer.spec.acme.privateKeySecretRef) as well as the Certificate s actual certificate (ingress.spec.tls[].secretName).
Usually, you d name your account private key secret something more like letsencrypt-staging-private-key and name your ingresses certificate something similar to what you ve got now (e.g. vs-portal-tls-secret).
The Issuer private key is used to identify your ACME account with the ACME server, and it has no relation to the private key that is used to serve with.
https://github.com/jetstack/cert-manager/issues/1387
问题回答
暂无回答
相关问题
ASP.NET Web Forms Applications on Azure (or any cloud hosting)
This is a pretty vague question but I m struggling a bit to get my head around what is involved in cloud hosting.
Say for instance if I had an asp.net web app using:
- Webforms
- linq to sql
- an ...
Windows Azure WorkerRole response
I am working on an Azure demo to run Powershell in a worker role. In my web role I add the name of the Powershell script which is to be run to a CloudQueue object.
I can print the script output to ...
Windows Azure WebRole stuck in a deployment loop
I ve been struggling with this one for a couple of days now. My current Windows Azure WebRole is stuck in a loop where the status keeps changing between Initializing, Busy, Stopping and Stopped.
It ...
Getting a token for Windows Azure
We are looking at Windows Azure, but getting a token appears to be hard now, at least that s what I m seeing in web searches. Anyone tried it or know how to accelerate that process?
Any idea how long ...
Running Azure application on a local development environment got extreamly slow
Problem:
I have a Azure project.
The problem is that when I run the application it takes like 10-15 minutes to actually open the page in browser. The page & debugging works normaly.
Project:
...
Don t flush the session after an exception occurs - NHibernate
I am developing a ASP.NET MVC web app under .NET 3.5, NHibernate and hosted on Windows Azure. When, the webapp is run from the local development fabric it works fine. Yet, when I move it to Windows ...
Developing Azure .Net 4.0 Applications
Presently .Net 4.0 is not supported on Azure.
This thread indicates that you will not be able to use .Net 4.0 with VS 2010 until it is supported in the cloud.
http://social.msdn.microsoft.com
I d ...
.NET 4.0 on Windows Azure?
My google-fu is failing me on this one.
As a possible solution to Unit Testing .NET 3.5 projects using MStest in VS2010 (but I ve put this in a seperate question because it s kind of unrelated):
Is ...
