Install cert-manager

Install cert-manager to use with Vault in your Kubernetes and OpenShift environments.

Repeat the following steps for the management cluster and each workload cluster.

  1. In your management cluster, install cert-manager. For more information about installation options and versions, see the cert-manager documentaton.

    • kubectl installation:
      kubectl apply --context $MGMT_CONTEXT -f
    • Helm installation:
      helm repo add jetstack
      helm repo update
      helm install \
        cert-manager jetstack/cert-manager \
        --namespace cert-manager \
        --create-namespace \
        --version v1.5.4 \
        --set installCRDs=true
  2. Verify that cert-manager was successfully installed.

    kubectl get po -n cert-manager --context $MGMT_CONTEXT

    Example output:

    NAME                                       READY   STATUS    RESTARTS   AGE
    cert-manager-7c6f78c46d-247br              1/1     Running   0          17s
    cert-manager-cainjector-668d9c86df-7cqb8   1/1     Running   0          17s
    cert-manager-webhook-764b556954-2m4zf      1/1     Running   0          17s