Skip to content

How to install tenant with tls in OpenShift

Jump to bottom
Cesar Celis Hernandez edited this page Nov 9, 2022 · 1 revision

Objective:

To install a MinIO Tenant with TLS in OpenShift.

Steps:

  1. Assuming you have a cluster ready

  2. Install the operator:

oc apply -k github.com/minio/operator/resources/\?ref\=v4.5.4

  1. Scale Down Operator Replicas to One

  2. securityContext as empty in Operator Deployments.

  3. Create the Operator Route to connect to the UI.

  4. Install cert manager from Operator Hub.

  5. Deploy the tenant with tls:

  • File: ~/operator/examples/kustomization/tenant-certmanager/tenant.yaml 
apiVersion: minio.min.io/v2
kind: Tenant
metadata:
  name: storage
  namespace: minio-tenant
spec:
  ## Disable default tls certificates.
  requestAutoCert: false
  ## Use certificates generated by cert-manager.
  externalCertSecret:
    - name: tenant-certmanager-tls
      type: cert-manager.io/v1
  ## Specification for MinIO Pool(s) in this Tenant.
  pools:
    - servers: 1
      name: pool-0
      volumesPerServer: 1
      ## Configure security context
      securityContext: {}
      volumeClaimTemplate:
        apiVersion: v1
        kind: persistentvolumeclaims
        metadata: { }
        spec:
          accessModes:
            - ReadWriteOnce
          resources:
            requests:
              storage: 1Gi
          storageClassName: standard



oc apply -k ~/operator/examples/kustomization/tenant-certmanager

Result:

Screenshot 2022-11-09 at 8 40 31 AM
Clone this wiki locally