helm init --service-account tiller \
--tiller-namespace ns-1 --tiller-tls --tiller-tls-verify \
--tiller-tls-cert ./tiller.cert.pem \
--tiller-tls-key ./tiller.key.pem \
--tls-ca-cert ca.cert.pem

****************************************************************************************
helm init --tiller-namespace ns-2 --tiller-tls --tiller-tls-cert ./tiller.ns-2.cert.pem \
--tiller-tls-key ./tiller.ns-2.key.pem --tiller-tls-verify --tls-ca-cert ca.cert.pem \
--service-account tiller

****************************************************************************************
helm ls --tiller-namespace ns-1 --tls --tls-ca-cert ca.cert.pem --tls-cert helm.cert.pem --tls-key helm.key.pem

****************************************************************************************
****************************************************************************************
****************************************************************************************


openssl genrsa -out ./ca.key.pem 4096
openssl req -key ca.key.pem -new -x509 -days 7300 -sha256 -out ca.cert.pem -subj /CN=www.cdebase.com -extensions v3_ca

****************************************************************************************

openssl genrsa -out ./tiller.key.pem 4096 
openssl genrsa -out ./helm.key.pem 4096


openssl req -key tiller.key.pem -new -sha256 -out tiller.csr.pem  -subj /CN=www.cdebase.com/emailAddress=userid@cdebase.com
openssl req -key helm.key.pem -new -sha256 -out helm.csr.pem -subj /CN=www.cdebase.com/emailAddress=userid@cdebase.com

openssl x509 -req -CA ca.cert.pem -CAkey ca.key.pem -CAcreateserial -in tiller.csr.pem -out tiller.cert.pem -days 365
openssl x509 -req -CA ca.cert.pem -CAkey ca.key.pem -CAcreateserial -in helm.csr.pem -out helm.cert.pem  -days 365


****************************************************************************************


openssl genrsa -out ./tiller.ns-2.key.pem 4096 
openssl genrsa -out ./helm.ns-2.key.pem 4096


openssl req -key tiller.ns-2.key.pem -new -sha256 -out tiller.ns-2.csr.pem  -subj /CN=www.cdebase.com/emailAddress=ns-2@cdebase.com
openssl req -key helm.ns-2.key.pem -new -sha256 -out helm.ns-2.csr.pem -subj /CN=www.cdebase.com/emailAddress=ns-2@cdebase.com

openssl x509 -req -CA ca.cert.pem -CAkey ca.key.pem -CAcreateserial -in tiller.ns-2.csr.pem -out tiller.ns-2.cert.pem -days 365
openssl x509 -req -CA ca.cert.pem -CAkey ca.key.pem -CAcreateserial -in helm.ns-2.csr.pem -out helm.ns-2.cert.pem  -days 365

FAQs

What is @container-stack/openssl?

Is @container-stack/openssl popular?

Is @container-stack/openssl well maintained?

Last updated on 27 Mar 2024

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

@container-stack/openssl

To run tests

steps to enable helm tls

Related posts

The AI Advantage: Reshaping Cybersecurity in the Age of Autonomous Threats

UnitedHealth Group Discloses Protected Health Information Compromised for “Substantial Portion of People in America” in Recent Cyberattack