Difference between revisions of "Kubectl describe certificates"

From wikieduonline
Jump to navigation Jump to search
 
(6 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
{{lc}}
 
{{lc}}
kubectl describe certificate your-certname
+
 
  kubectl describe certificate your-certname -o yaml
+
 
+
  {{kubectl describe certificates events}}
 +
 
  
 
== Examples ==
 
== Examples ==
  kubectl describe certificate your-certname -o yaml
+
  Name:        [[quickstart-example-tls]]
 
+
Namespace:    grafana
  apiVersion: cert-manager.io/v1
+
Labels:      app.kubernetes.io/instance=grafana
  kind: Certificate
+
              app.kubernetes.io/managed-by=Helm
  metadata:
+
              app.kubernetes.io/name=grafana
   creationTimestamp: "2022-07-19T10:04:17Z"
+
              app.kubernetes.io/version=10.3.1
   generation: 1
+
              helm.sh/chart=grafana-7.3.0
   labels:
+
Annotations:  <none>
     chart: efi-1.2.0
+
  API Version: [[cert-manager.io/v1]]
     heritage: [[Tiller]]
+
  [[Kind:         Certificate]]
     release: your-release
+
  Metadata:
  name: prod-admin-tls-cert
+
   Creation Timestamp: 2024-02-13T18:17:18Z
   namespace: yourns
+
   Generation:         1
   resourceVersion: "8072080"
+
   Owner References:
  uid: 470e7384-c120-4e08-8d2b-b7152e9521d3
+
     API Version:           networking.k8s.io/v1
  spec:
+
    Block Owner Deletion:  true
   dnsNames:
+
    Controller:            true
  - your-subdomain.yourdomain.com
+
     Kind:                 Ingress
   issuerRef:
+
     Name:                 grafana
     kind: ClusterIssuer
+
    UID:                   928cf30b-1e94-4281-8ac6-12312314324
     name: letsencrypt-clouddns-prod
+
   Resource Version:       493953
   secretName: your-secret-nae
+
   UID:                     bf580a56-5509-438d-aa48-12312314324
  status:
+
  Spec:
   conditions:
+
   Dns Names:
  - lastTransitionTime: "2022-07-19T10:04:17Z"
+
    example.example.com
     message: '[[Existing issued Secret is not up to date for spec]]: [spec.commonName
+
   Issuer Ref:
      spec.dnsNames]'
+
    Group:     cert-manager.io
     reason: [[SecretMismatch]]
+
     Kind:       Issuer
     status: "False"
+
     Name:       letsencrypt-prod
     type: Ready
+
   Secret Name: quickstart-example-tls
  - lastTransitionTime: "2022-07-19T10:04:18Z"
+
    Usages:
     message: Issuing certificate as Secret was previously issued by Issuer.cert-manager.io/
+
    digital signature
     reason: [[IncorrectIssuer]]
+
    key encipherment
     status: "True"
+
  Status:
     type: Issuing
+
   Conditions:
   nextPrivateKeySecretName: prod-admin-tls-cert-f6zts
+
    Last Transition Time:       2024-02-13T18:17:18Z
  notAfter: "2022-08-21T13:19:36Z"
+
     Message:                     [[Issuing certificate as Secret does not exist]]
  notBefore: "2022-05-23T13:19:37Z"
+
    Observed Generation:         1
  renewalTime: "2022-07-22T13:19:36Z"
+
     Reason:                     [[DoesNotExist]]
 +
     Status:                     True
 +
     Type:                       [[Issuing]]
 +
    Last Transition Time:       2024-02-13T18:17:18Z
 +
     Message:                     Issuing certificate as Secret does not exist
 +
    Observed Generation:        1
 +
     Reason:                     [[DoesNotExist]]
 +
     Status:                     False
 +
     Type:                       Ready
 +
   Next Private Key Secret Name: quickstart-example-tls-jscb2
 +
Events:                         <none>
 +
 
 +
 
  
 +
[[k log -n cert-manager]] cert-managerXXX
  
 
== See also ==
 
== See also ==
* {{cert-manager}}
+
* {{kind: Certificate}}
  
 
[[Category:K8s]]
 
[[Category:K8s]]

Latest revision as of 11:55, 14 February 2024


 Events:
  Type    Reason     Age    From                                       Message
  ----    ------     ----   ----                                       -------
  Normal  Issuing    5m56s  cert-manager-certificates-trigger          Issuing certificate as Secret does not exist
  Normal  Generated  5m55s  cert-manager-certificates-key-manager      Stored new private key in temporary Secret resource "quickstart-example-tls-xswrs"
  Normal  Requested  5m55s  cert-manager-certificates-request-manager  Created new CertificateRequest resource "quickstart-example-tls-1"


Examples[edit]

Name:         quickstart-example-tls
Namespace:    grafana
Labels:       app.kubernetes.io/instance=grafana
             app.kubernetes.io/managed-by=Helm
             app.kubernetes.io/name=grafana
             app.kubernetes.io/version=10.3.1
             helm.sh/chart=grafana-7.3.0
Annotations:  <none>
API Version:  cert-manager.io/v1
Kind:         Certificate
Metadata:
  Creation Timestamp:  2024-02-13T18:17:18Z
  Generation:          1
  Owner References:
    API Version:           networking.k8s.io/v1
    Block Owner Deletion:  true
    Controller:            true
    Kind:                  Ingress
    Name:                  grafana
    UID:                   928cf30b-1e94-4281-8ac6-12312314324
  Resource Version:        493953
  UID:                     bf580a56-5509-438d-aa48-12312314324
Spec:
  Dns Names:
    example.example.com
  Issuer Ref:
    Group:      cert-manager.io
    Kind:       Issuer
    Name:       letsencrypt-prod
  Secret Name:  quickstart-example-tls
   Usages:
    digital signature 
    key encipherment
Status:
  Conditions:
    Last Transition Time:        2024-02-13T18:17:18Z
    Message:                     Issuing certificate as Secret does not exist
    Observed Generation:         1
    Reason:                      DoesNotExist
    Status:                      True
    Type:                        Issuing
    Last Transition Time:        2024-02-13T18:17:18Z
    Message:                     Issuing certificate as Secret does not exist
    Observed Generation:         1
    Reason:                      DoesNotExist
    Status:                      False
    Type:                        Ready
  Next Private Key Secret Name:  quickstart-example-tls-jscb2
Events:                          <none>



k log -n cert-manager cert-managerXXX

See also[edit]

Retrieved from "https://www.wikieduonline.com/index.php?title=Kubectl_describe_certificates&oldid=300140"

Advertising: