I have the ssl certficate zip file and the privatekey.key file. In total I have the certificate file .crt and another .crt with the name bundle.crt and a .pem file along with the private key with an extensin .key.
Now I am trying to use it to create a secret in istio using these files. I am able to create a secret with these files (thecertificate.cert and the privatekey.key and not using the .pem and bundle.cert file) but then when I use in my istio ingress gateway configuration and test it, I get an error on Postman: SSL Error: Unable to verify the first certificate.
Here are the details:
# kubectl create -n istio-system secret tls dibbler-certificate --key=privatekey.key --cert=thecertificate.crt
# kubectl get secrets -n istio-system
output: dibbler-certificate
gateway:
apiVersion: networking.istio.io/v1alpha3
kind: Gateway
metadata:
name: dibbler-gateway
spec:
selector:
istio: ingressgateway
servers:
servers:
- port:
number: 443
name: https
protocol: HTTPS
tls:
mode: SIMPLE
# serverCertificate: /etc/istio/ingressgateway-certs/tls.crt
# privateKey: /etc/istio/ingressgateway-certs/tls.key
credentialName: dibbler-certificate
hosts:
- "test.ht.io" # domain name goes here