New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WebHook error #4425
Comments
Please describe your installation config, what actually happened, what resources got created and add any logs with error messages etc. |
I am actually testing K8s cert-manager vault configuration for automation of certificates. I am able to install/start microk8s, able to run the pods, able to generate the token but my issuer is throwing this error. I have attached the yml file in my first comment. Let me know if you need any more of the details. |
Hi any other thoughts. |
It looks like Kubernetes API server is not able to reach cert-manager webhook. Have you checked that the webhook deployment is up and healthy? Are there any error logs etc? It may also be that your cluster networking setup does not allow Kubernetes API server to reach a cluster service in which case you might need to run the webhook on host network https://cert-manager.io/docs/installation/compatibility/#aws-eks |
The issue was once resolved by removing microk8s with "sudo snap remove microk8s" but today I was testing from the srcatch again got the same error. Although WebHook pod is up and running without any error. I am testing it over Amazon Ubuntu. Can't we set it up over Amazon Ubuntu ? |
It shouldn't be related to Amazon Ubuntu. It is likely related to what your cluster networking setup is. You should verify that Kubernetes API server is able to reach the webhook service. |
Yes, I am using default VPC over AWS cloud with required ports enabled. How I can check if the k8s API server is able to reach webhook service ? Please help. |
I don't really understand the setup - is this a self-hosted Kubernetes or are you using something like EKS? |
I have taken Ubuntu machine from AWS EC2 console and there I am testing it. So I guess it is self-hosted k8s. |
I am testing microk8s on local ubuntu20.04 and still getting the same error. Please help. |
Note: if you like, you can join the #cert-manager channel on the Kubernetes Slack? You can join with this link. |
Issues go stale after 90d of inactivity. |
Stale issues rot after 30d of inactivity. |
Rotten issues close after 30d of inactivity. |
@jetstack-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Describe the bug:
Expected behaviour:
Should have fetched the certificates
Steps to reproduce the bug:
Restarted the Vault and microk8s.
Anything else we need to know?:
Environment details::
/kind bug
The text was updated successfully, but these errors were encountered: