Custom CA in S3 backup target

nicolas87 · May 15, 2020, 12:31pm

Hello,

I successfully install longhorn on my cluster and I use ceph (S3) as a backup target.
My company has a private network with custom CA.
I modified the files in helm chart to mount the CA as a volume for the ui (I can now browse the page without error).
But how can I inject the CA in the pod/deployment managed by longhorn. In particular, I’m interested to modify the instancemanager pods because I see in the logs x509 : signed by unknow authority each time I want to do a backup.

Thanks for the help

Nicolas

yasker · May 15, 2020, 1:59pm

Hi @nicolas87

We’ve just implemented this feature in the upcoming v1.0.0. Check https://github.com/longhorn/longhorn/issues/704 for details. The document is currently at https://staging.longhorn.io/docs/0.8.1/snapshots-and-backups/backup-and-restore/set-backup-target/#using-a-self-signed-ssl-certificate-for-s3-communication. and will be merged into master when GA v1.0.0 released.

nicolas87 · May 15, 2020, 2:08pm

Hi @yasker

Thank you for the links.
I often read the issues to follow the dev but that one slip out of my watch.

Do I need to use master if I want to test or the 0.8.1 release already got it ?

Thanks

yasker · May 15, 2020, 2:23pm

Hi @nicolas87

You can test it using upcoming v1.0.0-RC1, which should be out early next week. But it would require a new setup since it’s not upgradable from/to other version.

nicolas87 · July 9, 2020, 2:35pm

Hi

I successfully used it !

Thank you very much

Topic		Replies	Views
Longhorn S3 credentials Longhorn	6	5915	June 26, 2018
Backup: use custom S3 provider Longhorn	1	1788	December 5, 2018
Custom Corporate Root CA Rancher 2.x	1	457	March 5, 2019
Using S3 with encryption Longhorn	2	1493	March 7, 2022
Git Helm Catalog untrusted certificate Rancher 2.x	2	508	December 10, 2019

Custom CA in S3 backup target

Related Topics