We are facing Error scraping metrics tls: failed to verify certificate: x509: certificate signed by unknown authority #1247
Comments
|
@dmitryax Hi , can someone assist on this issue please |
|
@dmitryax Hi did anyone got a chance to go through the issue, we still see the same issue |
|
you can try enabling preset and also providing receiver config: Check this discussion around tls issues - #1034 |
@povilasv Thank you for your response
we not seeing the tls error now but we are not able to get the cluster metrics in the otel collector logs although as exporter we put debug , below the values.yaml file we are using. mode: daemonset presets: config: nodeSelector:
|
|
Thank you for your response
We are not seeing the tls error now but we are not able to get the cluster metrics in the otel collector logs although as exporter we put debug , below the values.yaml file we are using. mode: daemonset presets: config: nodeSelector:
|
|
@povilasv Hi , did you get a chance to look into this issue , can you please assist. |
|
Try enabling debug logs and seeing what is happening https://opentelemetry.io/docs/collector/internal-telemetry/#configure-internal-logs |
@shbasha-clgx, it'll help the community debug your issue if you paste formatted YAML. You can do that by surrounding your YAML blocks with triple backticks, or selecting the YAML you've pasted and then clicking on the |
|
The same issue. How to deal with it? |
|
@shbasha-clgx @D13410N3 Please post helm chart config (values.yaml), collector logs output, and k8s environment details (managed k8s? what version? etc.). Please use YAML blocks with triple backticks as mentioned by @bixu. I'd help to reproduce and potentially fix the problem |
|
Hi we are using the opentelemetry-operator version 0.78.0. Our values yaml is as follows: opentelemetry-operator:
manager:
collectorImage:
repository: otel/opentelemetry-collector-k8s
admissionWebhooks:
certManager:
enabled: false
autoGenerateCert:
enabled: trueThen: apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: ca-issuer
spec:
ca:
secretName: root-secretselfsigned-ca-certificate.yaml apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: selfsigned-ca
namespace: tools
spec:
isCA: true
commonName: selfsigned-ca
secretName: root-secret
privateKey:
algorithm: ECDSA
size: 256
issuerRef:
name: selfsigned-issuer
kind: ClusterIssuer
group: cert-manager.ioselfsigned-clusterissuer.yaml apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: selfsigned-issuer
spec:
selfSigned: {}We started by allowing cert manager to create and sign the certificate as the documentation recommends but the same error was appearing immediately. Thanks in advice. |
|
Same issue here when trying helm chart version: 0.78.2 values.custom.yaml: |
Hi Team,
We are trying to install otel collector using helm and trying to get the kubernetesAttributes:
enabled: true
kubeletMetrics:
enabled: true
hostMetrics:
enabled: true
logsCollection:
enabled: true
includeCollectorLogs:
configuration added in values.yaml how ever we are facing below error , attached file for your reference.
Kindly look into this and please assist
error scraperhelper/scrapercontroller.go:197 Error scraping metrics {"kind": "receiver", "name": "kubeletstats", "data_type": "metrics", "error": "Get "
[https://xxxxxx:xxxx/stats/summary":]
tls: failed to verify certificate: x509: certificate signed by unknown authority", "scraper": "kubeletstats"}
we do not have self signed cert and need assistance on how to bypass this.
The text was updated successfully, but these errors were encountered: