Step 9 - Certification Authority
- 24 Jan 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Step 9 - Certification Authority
- Updated on 24 Jan 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
Update
24/01/2024: Document initialization (Ops)
Procedure for Configuring the Certification Authority for Paradigm
This section will guide you through selecting and configuring your Certification Authority (CA) to secure your application with TLS/SSL certificates.
Choice of Certification Authority
- Select the Certification Authority you wish to use for your TLS certificate:
- Let's Encrypt: For an automated and free solution that provides recognized certificates.
- Custom: If you wish to use your own Certification Authority or existing certificates.
Configuration with Let's Encrypt
- If you have chosen Let's Encrypt as your Certification Authority:
- Enter the email associated with your DNS resolver account in the DNS Solver Mail field.
- Enter the email associated with your Let's Encrypt account in the Certification Authority Mail field.
- If you are using Cloudflare to manage the DNS for your Kubernetes namespace, enter your Cloudflare API key, which must be encoded in Base64, in the corresponding field.
Custom Configuration
- If you opt for a custom Certification Authority:
- Provide the TLS certificate (TLS CRT) and the corresponding key (TLS KEY) in the provided fields. Both must be encoded in Base64.
- You have the option to upload the certificate and key files directly if supported by the interface.
Saving and Applying Settings
- After completing the required fields, verify that all information is correct.
- Save your configuration to apply the Certification Authority settings to your Paradigm cluster.
Tips and Final Notes
- It is important to note that all keys and certificates must be encoded in Base64 for security reasons and compatibility with Kubernetes (k8s).
- Ensure your configuration is correct and all certificates and keys are valid and up to date.
Was this article helpful?