Updating SSL certificate on single instance

Question

Is there any way of updating the SSL certificates for a Sisense server without having to rerun the ./sisense.sh xxxx.yaml?

oleksii_derkach · Answer

Hi&nbsp; bpeikes,1. Copy new public and private keys to /opt/sisense/config/ssl directory.2. Re-create TLS Secret:&nbsp;kubectl create secret tls sisense-tls -n sisense --dry-run -o yaml --key /opt/sisense/config/ssl/&lt;private key name&gt; --cert /opt/sisense/config/ssl/&lt;public key name&gt; | kubectl apply -f -&nbsp;3. Restart nginx-ingress controller pod:&nbsp;kubectl -n default delete pod -l app.kubernetes.io/name=ingress-nginx --force --grace-period=0&nbsp;&nbsp;Important note:&nbsp;This method is not officially supported because it is easy to mess up and forget specifying correct keys pathes in&nbsp;ssl_key_path and&nbsp;ssl_cer_path during next version upgrade or restoration.So, in case you are going to use this approach, be careful and do not forget to update ssl_key_path and ssl_cer_path with certs names in installer conifg yaml when run next upgrade in order to ensure that new certs will be deployed when it is required to:- upgrade Sisense to a new version;- re-install Sisense;- update sisense when it comes to change other deployment settings.&nbsp;

Forum Discussion

Updating SSL certificate on single instance

1 Reply

Recent Discussions

How to connect Sisense with Clickhouse

Connecting to Clickhouse

Auth0 SAML SSO: Can we configure a user to be part of multiple groups?

Cdata JDBC Drivers license

Best practises for co-dev in version control

Sisense

Support

Resources