Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
8,222 questions
Support for Lets Encrypt cert auto generation on AKS API Servers with private IP Addresses
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 28.999999999999996%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGR%3C/text%3E%3C/svg%3E)
Garsha Rostami
121
Reputation points
Is Cert Manager/Let's Encrypt certificate auto-generation supported on Application Gateway Ingress for AKS clusters whose API servers don’t have public IP addresses (e.g. API Server Vnet integration)? I haven’t been able to make it work. It works fine with clusters whose API servers have a public IP but not for clusters with private IPs. Even though the ingress controllers have public IP addresses, the ACME challenge (using HTTP01 validation) should work, but it looks like the challenge/response doesn't succeed and certs are not generated. I want to get a definite answer from the Azure Application Gateway Ingress team if leveraging Lets Encrypt auto-generated certs requires that the API server have a public IP address. Thanks!
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT 26,951 Reputation points Microsoft Employee2025-01-08T18:38:55.9033333+00:00 Thank you for reaching out.
I have reached out to the team internally regarding this issue and will make an update here as soon as I get a response. Thank you!
-
Garsha Rostami 121 Reputation points
2025-01-10T19:54:09.4766667+00:00 ??? No one has responded yet?
-
Garsha Rostami 121 Reputation points
2025-01-10T19:54:57.71+00:00 What is the status of this? Thanks.
Sign in to comment
Sign in to answer