Reputation: 16803
How to model an ALB with multiple certificates in AWS EKS?
I see a lot of posts in Stackoverflow relating to this subject, but I think they're not exactly the same.
Currently we have AWS ALBs with HTTPS listeners with multiple rules, and each listener rule is a /path/*. I know how to model that with Ingress Controller and Ingress objects now.
However our ALBs have have 2 certificate ARNs to serve two different domains. I know Ingress has this annotation now.
alb.ingress.kubernetes.io/certificate-arn: arn:aws:acm:us-west-2:XXXXXXXXXXXX:certificate/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
But how do I add another certificate?
Upvotes: 0
Views: 1134
Answers (2)
Reputation: 1053
Just separate the arn certificates with comma that k8s automagically identifies the correct certificate for each rule:
alb.ingress.kubernetes.io/certificate-arn: arn:aws:acm:us-west-2:XXXXXXXXXXXX:certificate/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx,arn:aws:acm:us-west-2:XXXXXXXXXXXX:certificate/xxxxxxxx-xxxx-xxxx-xxxx-2222222222222
Upvotes: 1
Related Questions
- Kubernetes cert-manager no certificate found on AWS ALB ingress
- Can We use Multiple AWS ACM Certificates at Nginx-Ingress-Contoller OR Multiple ACM certificate at Ingress object level?
- EKS Ingress with Single ALB, multiple namespaces, and External DNS
- EKS - Multiple certificates to one ingress-nginx
- EKS Ingress ALB add HTTP listener for some services and HTTPS for others
- How to configure EKS ALB with Terraform
- In AWS EKS, how can I define ingress to use one ALB for multiple subdomain URLs, each with their own certificate?
- How to setup Ingress for AWS EKS Application Load Balancer(ALB) for multiple microservices?
- EKS Ingress (for ALB) gets no endpoint when deploying more than 3 Ingresses
- AWS ALB Ingress Controller doesn't resolve over TLS