Insecure setup
In demo or testing setups only, you can use an insecure relay connection.
To simplify your Gloo Mesh (Gloo Platform APIs) installation, such as in a demo or POC environment, you can choose to disable the TLS or mTLS connection between the Gloo management server and agents, and instead use an HTTP connection. For more information about this option, see Insecure.
The steps to set up an insecure connection between the Gloo management server and agents vary depending on the installation method that you use.
You can follow the multicluster getting started guide guide to install Gloo Mesh (Gloo Platform APIs) by using the meshctl CLI. To ensure that no certificates are set up for the Gloo management server and the agents, make the following changes to the meshctl commands:
- In the
meshctl installcommand to create the Gloo management plane, include the--set common.insecure=trueand--set glooMgmtServer.insecure=trueflags. - In the
meshctl cluster registercommand to register a workload cluster, create the followingdata-plane.yamlHelm values file, and specify the file in the--gloo-mesh-agent-chart-values data-plane.yamlflag.common: insecure: true glooAgent: insecure: true
Follow the Install with Helm guide to install Gloo Mesh (Gloo Platform APIs) by using Helm. To ensure that no certificates are set up for the Gloo management server and the agents, make the following changes to the helm install commands:
- In the
helm installcommand for the Gloo management server, include the--set common.insecure=trueand--set glooMgmtServer.insecure=trueflags. - In the
helm installcommand for the Gloo agents, include the--set common.insecure=trueand--set glooAgent.insecure=trueflags.