-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
cluster CA validation fails with an HTTPS proxy #895
Comments
Hi @dhermanns , thanks for your report. What region are you using? I have seen this problem before when using |
Hi Martina, I'm using eu-central-1. I will try to switch to t3.small and give it a try ;-) Is there a way to disable TLS verification? Our proxy breaks TLS connection and I have to add our CA or disable verification to fix this. I'm thinking of something like
|
Same error with t3.small. |
When I try to delete e.g. a nodegroup afterwards using:
I get an error, too: And that's because I would have to add our ca.crt to Is there a way to let eksctl ignore TLS certificates? |
Not at the moment, but you should be able to work around this. And we'd like to fix it, of course. Please try this:
To update the configmap, you will need instance role ARN, which can be found in many different ways, e.g. in CloudFormation stack outputs. You can get those outputs by using the CloudFormation console, or with |
hello, any update on this feature? |
+1 |
@antoine-choimet-cbp @citrusoft If you have time, please try out my branch with the new option #2294 |
remove hardcoded namespace for pod disruption budget
What happened?
I tried to create a new cluster using eksctl create cluster. eksctl failed with a timeout.
Until this, I see the following error message:
"control plane not read yet - certificate signed by unknown authority"
After 25 minutes, I get:
"2019-06-18T11:15:11+02:00 [✖] timed out waiting for control plane "lvm" after 25m0s"
After checking with kubectl get nodes it turns out, that no nodes have been assigend to
the cluster.
What you expected to happen?
A new cluster with assigned nodes should have been created.
How to reproduce it?
Anything else we need to know?
I'm running on ubuntu 16.04. aws-iam-authenticator is installed.
Versions
Please paste in the output of these commands:
Logs
This is just an extract. Let me know if you need more (I don't want to paste something sensitive here):
The text was updated successfully, but these errors were encountered: