我使用Helm Chart安装了证书管理器。我创建了一个ClusterIssuer
,但我看到它处于失败状态:
kubectl describe clusterissuer letsencrypt-staging
ErrRegisterACMEAccount Failed to register ACME account: invalid character '<' looking for beginning of value
是什么原因导致了这种invalid character '<'
?
此错误很可能是服务器url不正确的结果,您指定的url返回HTML(因此抱怨<
(。
请确保您的服务器url是https://acme-staging-v02.api.letsencrypt.org/directory"
,而不仅仅是,url中必须包含https://acme-staging-v02.api.letsencrypt.org/"
/directory
。
因此ClusterIssuer
应该是这样的(重点是.spec.acme.server(
kind: ClusterIssuer
metadata:
name: letsencrypt-staging
spec:
acme:
email: name.surname@mycompany.com
privateKeySecretRef:
name: letsencrypt-staging
server: https://acme-staging-v02.api.letsencrypt.org/directory
solvers:
- dns01:
route53:
hostedZoneID: XXXXXXXXXXXXXX
region: eu-north-1
selector:
dnsZones:
- xxx.yyy.mycompany.com