All about TLS certificates
Untrusted Root Certificates
Many organizations deploy their own Root Certificate and CA service inside the corporate networks. Internal websites, image repositories and other resources may install SSL server certificates issued by this CA service for security and privacy concerns.
You may install the Root Certificate into the minikube cluster to access these corporate resources within the cluster.
You will need a corporate X.509 Root Certificate in PEM format. If it’s in DER format, convert it:
openssl x509 -inform der -in my_company.cer -out my_company.pem
Copy the certificate into the certs directory:
mkdir -p $HOME/.minikube/certs cp my_company.pem $HOME/.minikube/certs/my_company.pem
Then restart minikube with the
--embed-certs flag to sync the certificates:
minikube start --embed-certs
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.
Last modified February 7, 2021: Add missing reference to --embed-certs (4a20660a3)