Technotes

Technotes for future me

Certificates Kubernetes

CertManager logging

k logs -n cert-manager cert-manager-

get Issuers

kubectl get issuers.cert-manager.io -A

get CertificateRequests

kubectl get certificaterequest

see the state of the request

kubectl describe certificaterequest some-certificaterequest-name

check the Order

kubectl get order

kubectl describe order some-order-name

check Challenge

kubectl get challenge

kubectl describe challenge some-challenge-name

get certificate info

kubectl get secrets blaataap.com -n platform -o json | jq '.data["tls.crt"]' |sed 's/"//g' | base64 -d| openssl x509 --text

kubectl get certificate -n platform -o=jsonpath='{.items[0].status.renewalTime}'

curl --insecure -v https://blaataap.com:443 2>&1 | awk 'BEGIN { cert=0 } /^\* SSL connection/ { cert=1 } /^\*/ { if (cert) print }'

https://cert-manager.io/docs/faq/acme/
https://cert-manager.io/docs/faq/troubleshooting/
https://www.thinktecture.com/en/kubernetes/ssl-certificates-with-cert-manager-in-kubernetes/

Last updated on 31 Jan 2022
Published on 31 Jan 2022
Edit on GitHub