Skip to content

Configuration

To make the ncm-issuer work properly, it is necessary to create few Kubernetes secrets that contains credentials to NCM REST API and optional TLS configuration.

installation

NCM REST API credentials

kubectl create secret generic \
<secret-name> \
-n <namespace> \
--from-literal=username=<username> \
--from-literal=usrPassword=<password>

TLS without client authentication

kubectl create secret generic \
<secret-name> \
-n <namespace> \
--from-file=cacert=<ca-for-tls.pem>

TLS with client authentication

kubectl create secret generic \
<secret-name> \
-n <namespace> \
--from-file=cacert=<ca-for-tls.pem> \
--from-file=key=<client-auth-pkey.pem> \
--from-file=cert=<client-auth-cert.pem>

Tip

To make sure that specific secret have been created correctly, you can check this by using command:

kubectl -n <namespace> describe secrets <secret-name>