I use cert-manager in my kubernetes cluster to generate, manage and renew TLS certificates. In this post, I’ll show you how I set it up.
Installing cert-manager in Kubernetes
Create a namespace for cert-manager
kubectl create namespace cert-manager
I like using manifest files to deploy Kubernetes resources. This way, I can version them and keep track of everything applied to my cluster. Download the cert-manager manifest and rename it:
curl -LO https://github.com/cert-manager/cert-manager/releases/download/v1.16.3/cert-manager.yaml mv cert-manager.yaml cert-manager-1.16.3.yaml
Apply the configuration
kubectl apply -f cert-manager-1.16.3.yaml
Verify installation
kubectl -n cert-manager get all
If you prefer downloading and applying the manifest in a single step, run:
kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.16.3/cert-manager.yaml
Cert-manager is now installed. The next step is to connect it to a certificate issuer and start issuing certs. I’ll cover how to do this in the next post.