[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Configuring custom certs



Hi Tim, 

You may want to enable additional logging by running 'oc cluster up --loglevel=5 --server-loglevel=5

If the origin container can't start, there's something wrong with the master-config.yaml (could be as simple as a formatting issue)

> On Jul 28, 2017, at 6:17 AM, Tim Dudgeon <tdudgeon ml gmail com> wrote:
> 
> I'm trying to work out how to deploy custom certificates so that the OS console doesn't complain about untrested certs.
> I've obtained certificates using Let's Encrypt, so have the following files:
> cert.pem chain.pem fullchaim.pem privkey.pem
> 
> Now I try to update my master-config.yaml to use these.
> I was thinking that the minimum needed would be to edit:
> 
> assetConfig.ServingInfo.certFile to point to fullchain.pem
> 
> assetConfig.ServingInfo.keyFile to point to privkey.pem
> 
> and leave assetConfig.ServingInfo.clientCA as empty.
> 
> I made no other changes.
> 
> Unfortunately this does not work. oc cluster up fails badly without saying much that is useful:
> 
> 
> Starting OpenShift using openshift/origin:v3.6.0-rc.0 ...
> -- Checking OpenShift client ... OK
> -- Checking Docker client ... OK
> -- Checking Docker version ... OK
> -- Checking for existing OpenShift container ...
>  Deleted existing OpenShift container
> -- Checking for openshift/origin:v3.6.0-rc.0 image ... OK
> -- Checking Docker daemon configuration ... OK
> -- Checking for available ports ... OK
> -- Checking type of volume mount ...
>  Using nsenter mounter for OpenShift volumes
> -- Creating host directories ... OK
> -- Finding server IP ...
>  Using 127.0.0.1 as the server IP
> -- Starting OpenShift container ...
>  Starting OpenShift using container 'origin'
> FAIL
>  Error: could not start OpenShift container "origin"
>  Details:
>  No log available from "origin" container
> 
> Any pointers to how to do this correctly?
> 
> Thanks
> Tim
> 
> _______________________________________________
> users mailing list
> users lists openshift redhat com
> http://lists.openshift.redhat.com/openshiftmm/listinfo/users



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]