Categories
Uncategorized

cert-manager too old …

Today cert-manager stopped issuing certificates, and all requests said “insecure website”. Uncool, since this affected our Confluence and our sign-in mechanism. So let’s find out what was happening, right? Turns out cert-manager considered itself “too old” (“your ACME client is too old”, literally) and wanted to be updated. So far, so good. Just perform helm […]

Categories
Infrastructure Snippets

Helm in a kops cluster with RBAC

I created a K8S cluster on AWS with kops. I ran helm init to install tiller in the cluster. I ran helm list  to see if it worked. I got this: Error: configmaps is forbidden: User “system:serviceaccount:kube-system:default” \ cannot list configmaps in the namespace “kube-system” That sucked. And google proved … reluctant. What I could […]