ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

AIOps - Installer doesn't update ingress with correct cert - Kubernetes Ingress Controller Fake Certificate

book

Article ID: 222930

calendar_today

Updated On:

Products

DX Operational Intelligence DX Application Performance Management CA App Experience Analytics

Issue/Introduction

During installation we selected to secure routes and added customer certificate however browser indicates that certificate is invalid, it seems to be using the ingress certificate 

 

Cause

This happens if the kubernetes doesn't accept the secret you used for ingress, it defaults to the its own certificate.
 
 

Environment

DX Platform 20.x
DX Operational Intelligence 20.x
DX Application Performance Management 20.x
DX AXA 20.x

Resolution

Check the cert that you created is correct for the ingress url, wild card DNS name, date, valid certs/ keys


For the above example and use-case:

Solution #1) Generate the certs with SAN as *.dxstag.tmpstag.tivibusiness.com instead of *.tmpstag.tivibusiness.com 

Solution #2) Change dns definitions and changed wildcard dns as *.tmpstag.tivibusiness.com

Additional Information

DX OI - Troubleshooting, Common Issues and Best Practices

Powered by Wolken Software