https://rancher.com/ logo
b

bright-fireman-42144

02/07/2023, 5:34 PM
I managed to get myself another intel NUC type box and am going to play with tinkerbell provisioning harvester... but one thing I was always interested in was a good guide/tutorial/write up on using letsencrypt certs with an auto renewal mechanism on the harvester appliance itself. I currently use an external certbot and then apply those certs on my single node right now. Does anyone have anything more elegant?
@great-bear-19718 since I've been following your work with using tinkerbell with harvester... any thoughts on harvester certs and automatic renewals of letsencrypt? I guess I could whip up a certbot container and run a kubernetes cron job but if there is already an existing solution people use on the harvester team or if it's on the roadmap, I'd be interested in any thoughts.
g

great-bear-19718

02/07/2023, 11:45 PM
i dont have an answer for this yet as i have not had the need to address this
are you able to create a GH issue? it may be worth for the wider team to explore if this would be a valid use case to support
b

bright-fireman-42144

02/08/2023, 12:39 AM
sure, I can certainly do that. Not really a bug or anything, I haven't used github in awhile, I'll make sure I don't tag it as a bug or anything.
g

great-bear-19718

02/08/2023, 12:40 AM
it can always be a feature request 😄
👍 1
b

bright-fireman-42144

02/08/2023, 12:47 AM
who knows... we'll see what comes of it. Thanks for reaching out 'tinkerbell man' LOL
18 Views