Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[Question] ... No CA found. error while creating kafka cluster with ingress and own CA certificate
See original GitHub issueI have used my own CA certificate to configure the kafka with ingress.
After spinning up the cluster the pods are going to “CrashLoopBackOff” with below error.
Detected Zookeeper ID 1
Preparing truststore
Adding /opt/kafka/cluster-ca-certs/ca.crt to truststore /tmp/zookeeper/cluster.truststore.p12 with alias ca
Certificate was added to keystore
Preparing truststore is complete
Looking for the right CA
No CA found. Thus exiting.
I have created the cluster-ca-cert secret with file having certificates and cluster-ca secret with key file. The certificates are in below order
- CA certificate
- Intermediate certificate
- Root CA certificate
Please guide me here on setting up ingress with own CA certificate.
Issue Analytics
- State:
- Created 3 years ago
- Reactions:1
- Comments:27 (11 by maintainers)
Top Results From Across the Web
New kafka pod replicas cannot find CA on scaling
The certificate in question exists and is used by the existing pod without problem. The same error occurs when I try to scale...
Read more >Configuring Strimzi (In Development)
Use your own Kafka cluster name to replace <kafka_cluster_name>. ... restart if a CA (certificate authority) certificate that it manages is close to...
Read more >Chapter 5. Managing secure access to Kafka
The Cluster Operator creates the listeners and sets up the cluster and client certificate authority (CA) certificates to enable authentication within the ...
Read more >Troubleshooting SSL - GitLab Docs
This error indicates that the client does not trust the certificate or CA. To fix this error, the client connecting to server will...
Read more >Ingress Operator in OpenShift Container Platform
The config map should contain a CA certificate bundle. ... All the available nodes in the cluster have their own, externally accessible IP...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
@sigma-libra You cannot scale the operands like that. You have to change the number of replicas in the
Kafkacustom resource.@tusharbhasme You are not really expected to move from Strimzi CA to custom CA in the middle (at least in a sense that there are no tests covering this etc.). That can definitely cause issues. And in general, if you use Strimzi 0.8, there have been a lot of bugfixes and improvements since.