I’m trying to set up a local proof-of-concept of Conjur OSS within a Docker Desktop Kubernetes environment backed by WSL2 Ubuntu 18.04. It may be that this simply isn’t supported, but the docs claim that 1.5+ Kubernetes implementations are support.
Docker Community edition
I’ve followed the guide and used the Conjur OSS Helm Chart with helm3.
I’m having trouble understanding what SSL certificates are required or how I should configure them for a local installation, but the doc says that “Conjur is running HTTPS on port 443 (9443 within the cluster) with a self-signed certificate”. The Conjur pods all start up (server, postgres) and the ingress service. I can hit the Conjur server fine on HTTPS localhost.
However, the final steps fail to connect using the client to the server to log in:
docker run --rm -it --entrypoint bash cyberark/conjur-cli:5
conjur init --force=true --url https://localhost --account=default
error: Unable to retrieve certificate from localhost :443
When I look at the ingress service, I see that the external port is not an IP address but “localhost”.
Furthermore, the external endpoint is created as http://localhost:443/
Does anyone have any clues or experiences that could help? The issue is compounded by both the configuration of Conjur and Kubernetes and I don’t see a way to resolve this.