Multiple certificates in TLSstore

blixhavn · December 20, 2022, 12:04pm

Hello,

I want to use two wildcard certificates in my cluster. One for *.sub.domain.com and one for *.domain.com.

I have already created a TLSStore containing *.domain.com as a default certificate replacing the TRAEFIK DEFAULT CERT. This works nicely, and Ingresses specifying a whatever.domain.com gets this certificate.

Now, I also want to add routes to whatever.sub.domain.com, and I wonder how this should be done. Is it possible to add more than one certificate to the TLSStore? Does this then need to be referenced somehow by Ingresses or IngressRoutes using hostnames where this certificate is needed, or is it solved automagically?

Best regards,
Øystein

bluepuma77 · December 20, 2022, 5:38pm

For "regular" Traefik with Docker (no kubernetes), we just place multiple wildcard certs in the config:

#traefik-dynamic.yml
tls:
  options:
    default:
      minVersion: VersionTLS12
  certificates:
    - certFile: /traefik/example.com.crt
      keyFile: /traefik/example.com.key
    - certFile: /traefik/example2.com.crt
      keyFile: /traefik/example2.com.key

Topic		Replies	Views
Multiple K8s Certificates via TLSStore(s) Traefik v2 kubernetes-ingress	0	426	June 11, 2020
How to use the same wildcard TLS certificate in multiple IngressRoutes in different namespaces? Traefik v2 kubernetes-crd , kubernetes-ingress	5	3271	August 19, 2019
Setup TLS/SSL, need help Traefik v2 kubernetes-ingress	3	694	April 16, 2021
Dedicated TLS certificate for termination on certain services Traefik v2 file , kubernetes-crd , kubernetes-ingress	0	478	August 24, 2020
Wildcard SSL certificate served over normal SSL certificate Traefik v1 kubernetes-ingress	1	515	August 15, 2019

Multiple certificates in TLSstore

Related Topics