The Cert-Manager plugin is an instrument for managing SSL/TLS certificates with Kubernetes. The plugin provides the option of generating, issuing, renewing, and managing certificates with different providers.
ClouDNS is utilized as a DNS provider for cert-manager in scenarios where certificate issuance is required for domains whose DNS is managed by ClouDNS. This is beneficial if you want to leverage cert-manager's automated integration with ClouDNS to generate and manage SSL/TLS certificates for your services and applications utilizing Kubernetes.
One of the requirements for the automatic generation of the Cert-Manager certificate is to have access to our HTTP API. All our Premium DNS and DDoS Protected DNS plans include access to the HTTP API and can be used to generate free SSL certificates with Cert-Manager for any hostname you need. Another important condition is, that your domain is delegated to our name servers and the DNS for the domain name is hosted on our side.
Before installing cert-manager-cloudns, make sure you have cert-manager installed & running, including the cert-manager Custom Resource Definitions (CRD). You can find how to do this with Helm here.
kubectl create secret generic cert-manager-webhook-cloudns-api-secret \
--from-file .creds/auth_id \
--from-file .creds/auth_password
make rendered-manifest.yaml
kubectl apply -f .out/rendered-manifest.yaml
solvers:
- dns01:
webhook:
groupName: acme.ixon.cloud
solverName: cloudns