Question

Adding kubernetes cluster to GitLab - getting the CA certificate

Posted December 11, 2018 4.1k views
Kubernetes

I’m attempting to add a Digital Ocean Kubernetes cluster to GitLab. It asks for these values:

  • Kubernetes cluster name
  • API URL
  • CA Certificate
  • Token
  • Project namespace (optional, unique)

I followed the answers in a previous post (https://www.digitalocean.com/community/questions/adding-kubernetes-cluster-to-our-private-gitlab-server), and I solved everything except “CA Certificate.”

Looking at the cluster’s config.yml file (downloaded from Digital Ocean), I see a few values including CERTIFICATE-AUTHORITY-DATA, CLIENT-KEY-DATA, etc. However, these don’t seem to be PEM format - which I assume is necessary.

In the end, I tried a few different values. GitLab continues with the setup without complaint, but the installation of Helm Tiller fails every time. This tells me that GitLab doesn’t confirm the values.

Can anyone tell me how to find my CA Certificate? Thanks.

1 comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
3 answers

I had the same issue myself and discovered that ‘certificate-authority-data’ field in your kube config file is the right value, it’s just base64 encoded.

If you decode it then it’ll be in .pem format and works with the GitLab kubernetes integration.

Thank you very much, writing articles you share very well, so you do as above

To get the CA certificate you need to first have created a service account for GitLab. You can then run the command listed towards the bottom of the linked section here to grab it.

Submit an Answer