Manually check the TKG cluster certificate
search cancel

Manually check the TKG cluster certificate

book

Article ID: 337595

calendar_today

Updated On:

Products

VMware Telco Cloud Automation

Issue/Introduction

This KB provides the steps you can follow to manually check the certificate of the TKG certificate that is used in Telco Cloud Automation (TCA).

Environment

1.x, 2.x, 3.x

Resolution

  1. SSH as capv to the TKG cluster.
  2. Obtain the tls.crt value: 
    kubectl get secret nodeconfig-certs -n tca-system -o yaml
  3. Copy the tls.crt value.
  4. Use the tls.crt value from the proceeding step to create a pem file:
    echo 'tls.crt_value' | base64 -d > clustercert.pem
  5. Review the pem file for the certificate expiration date:
    openssl x509 -in clustercert.pem -noout -text

Example:


Powered by Wolken Software