Skip to content
This repository was archived by the owner on Feb 13, 2024. It is now read-only.

Add custom certificates option #28

Open
piggyvenus opened this issue Jan 30, 2018 · 10 comments
Open

Add custom certificates option #28

piggyvenus opened this issue Jan 30, 2018 · 10 comments

Comments

@piggyvenus
Copy link

It would be nice to be able to use custom certificates instead of just using the self signed cert.
@haroldwongms
Copy link
Contributor

@piggyvenus I agree. I have been looking at incorporating this into the template as well as the Azure Marketplace offer. Give me a little time to work on this as my calendar is completely swamped right now.

@piggyvenus
Copy link
Author

Thanks for following up on this one!

@haroldwongms
Copy link
Contributor

@piggyvenus I haven't forgotten about this. We will be including this in our next sprint.

@haroldwongms
Copy link
Contributor

Update: custom certificates are being incorporated now for master web console and routing domain. Stay tuned as we finish working through the last few bugs before the PR.

@linuxius
Copy link

Do you have a pre-release yet I could try. I found that changing the certificates after installation is quite impossible.

@haroldwongms
Copy link
Contributor

@linuxius my working branch is here: https://github.com/haroldwongms/openshift-container-platform/tree/certandproxy. I have updated the readme but may still be missing some documentation.

@linuxius
Copy link

Thanks for the speedy response. I cloned your working tree and adapted the azuredeploy.parameters.json file according to the readme. But I am getting the following message:

"Unable to download deployment content from 'https://raw.githubusercontent.com/Microsoft/openshift-container-platform/master/nested/masterprep.json'.
The tracking Id is 'b7e81cad-da4b-4b2f-97ba-f34d16d1f2ed'. Please see https://aka.ms/arm-deploy for usage details."

"Deployment template validation failed: 'The template parameters 'customMasterCertFile, customRoutingCertFile, noProxyEntry, masterCertType, routingCertType,
customRoutingKeyFile, httpProxyEntry, proxySettings, httpsProxyEntry, customMasterKeyFile, customMasterCaFile, customRoutingCaFile' in the parameters file are
not valid; they are not present in the original template and can therefore not be provided at deployment time. The only supported parameters for this template
are...... "

I assume the "_artifactsLocation" is wrong for your working tree. I tried the following, but without success
"_artifactsLocation": {
"value": "https://raw.githubusercontent.com/haroldwongms/openshift-container-platform/tree/certandproxy"
},

Can you tell me what I am doing wrong?

Thanks.

@haroldwongms
Copy link
Contributor

@linuxius Please update the _artifactsLocation parameter in the parameters file versus the azuredeploy.json file. You do want to use https://raw.githubusercontent.com/haroldwongms/openshift-container-platform/tree/certandproxy as you stated above.

@linuxius
Copy link

I tried that but I am getting the following error in the deployment log:
"code": "InvalidContentLink", "message": "Unable to download deployment content from 'https://raw.githubusercontent.com/haroldwongms/openshift-container-platform/tree/certandproxy/nested/galleryclusternode.json'. The tracking Id is '2ec87ad2-080a-4250-9a16-e909f1778169'. Please see https://aka.ms/arm-deploy for usage details."

I assume the link is incorrect.

@haroldwongms
Copy link
Contributor

My mistake. Please use: https://raw.githubusercontent.com/haroldwongms/openshift-container-platform/certandproxy (don't have tree at the end)

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@piggyvenus @haroldwongms @linuxius