Kubernetes cert-manager fails to auto renew certificates

gucheng · January 11, 2021, 6:40pm

Kubernetes cert-manager failed to renew certificates automatically. I received some expiration emails with subjects like:

Let's Encrypt certificate expiration notice for domain 'helloworld.example.com'...

My question is:

Does a Certificate object automatically renew, and how to enable the feature?
If no auto-renewal feature, then how to set an external process to periodically renew before expiration date?

Vague memory told me that cert-manager did auto-renew, but I'm not so sure.

In my environment, the current running cert-manager version is 1.0.4 version, a typical certificate object is defined like:

apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
  name: example-letsencrypt-production
  namespace: default
spec:
  dnsNames:
  - helloworld.example.com
  issuerRef:
    group: cert-manager.io
    kind: ClusterIssuer
    name: letsencrypt-production
  secretName: helloworld-production

Thanks,

system · February 10, 2021, 6:40pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Auto Renewal of cert-manager certificate is not happening Help	7	2207	September 16, 2023
SSL certificate auto renew Help	3	443	April 5, 2023
Certificate renew with Kubernetes cert-manager Help	2	8267	April 3, 2020
AWS EKS Letsencrypt - ACME certificates expired and unable to renew automatically Help	2	908	August 5, 2023
Certificate renewal Help	2	555	March 20, 2022

Kubernetes cert-manager fails to auto renew certificates

Related topics