在Kubernetes 环境中,Ingress Controller 通常用于管理外部访问到集群内部服务的路由规则。为了保障通信的安全性,Ingress Controller 可能会使用 TLS 证书来加密客户端与服务器之间的通信。如果使用的是自签名证书(即假证书),那么这些证书的有效期是可以在生成时指定的。 默认情况下,某些工具或脚本可能会生成有效期为1年...
如果没有有效的证书或者ingress TLS的配置有错误,你将会看到“你的连接不是私人的”安全警告。如果查看证书的细节,你会看到证书名字是“Kubernetes Ingress Controller Fake Certificate” Kubernetes Ingress Controller Fake Certificate是Nginx ingress controller自带的默认SSL证书。如果查看nginx.conf of the Nginx,你就能...
I am using the client certificate and added the intermediate certificate as well. when I opened it in the browser it's working as expected, But when I'm trying to get the certificate by running below command it's not working it is showing a fake certificate. openssl s_client -connect my...
TLS handshake, Server hello (2):*TLSv1.2 (IN), TLS handshake, Certificate (11):*TLSv1.2 (OUT), TLS alert, Server hello (2):*SSL certificate problem: unable to getlocalissuer certificate*stopped the pause stream!*
(CN=Kubernetes Ingress Controller Fake Certificate,O=Acme Co) does not match with CA certificate Issuer (CN=localhost,C=CN). Please check if the configured server certificate contains all needed intermediate certificates and make sure they are in the correct order (server certificate first, ...
NGINX Ingress controller version: unable to verify Kubernetes version (use kubectl version): 1.13 Environment: Cloud provider or hardware configuration: On premise, underlying hypervisor is VMware OS (e.g. from /etc/os-release): Debian K...
sale.dev.k8.atcloud.io (10.193.64.2) port 443 (#0) * TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 * Server certificate: Kubernetes Ingress Controller Fake Certificate > GET / HTTP/1.1 > Host: at-rate-of-sale.dev.k8.atcloud.io > User-Agent: curl/7.51.0 > ...