Running OKD 3.11, installed with ansible. I just need to use a custom self-signed certificate for the web console, and for some reason, I am not sure how to make the nodes trust this certificate too.
I have changed the servingInfo section in /etc/origin/master/master-config.yaml as per the following ( with italic only the added lines ):
requestTimeoutSeconds: 3600 namedCertificates:
- certFile: domain.cert
The certificate is generated and self signed for *.domain.internal.
The problem is, that now the nodes do not trust this ceritificate:
journalctl -fu origin-node
Could anyone please advice me how to solve this ?
I would avoid regenerating all the certificates using the playbooks, I would rather prefer doing it manually if possible.
Thank you very much !
Best regards, Leo David