TLS Configuration

This guide demonstrates how to configure TLS termination for an Ingress resource.

Prerequisite

The Ingress configuration must be completed before proceeding.

Ingress-NGINX Controller

1. Edit immuta-values.yaml to include the following Helm values.

   Copy

   secure:
     ingress:
       hostname: <immuta-fqdn>
       annotations:
         nginx.ingress.kubernetes.io/auth-tls-secret: <namespace>/<secret-name>

2. Create a TLS secret from a given public/private PEM formatted key pair.

   Copy

   kubectl create secret tls <secret-name> --cert=path/to/tls.cert --key=path/to/tls.key

3. Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

   Copy

   helm upgrade <release-name> oci://ocir.immuta.com/stable/immuta-enterprise --values immuta-values.yaml --version 2024.3.14

Refer to the Ingress-Nginx Controller documentation for further assistance.

GKE Ingress Controller

1. Edit immuta-values.yaml to include the following Helm values.

2. Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

Refer to the GKE Ingress Controller documentation for further assistance.

AWS Load Balancer Controller

1. Edit immuta-values.yaml to include the following Helm values.

2. Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

Refer to the AWS Load Balancer Controller documentation for further assistance.

AKS Application Gateway Ingress Controller

1. Edit immuta-values.yaml to include the following Helm values.

2. Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

Refer to the Application Gateway Ingress Controller documentation for further assistance.

Traefik

1. Edit immuta-values.yaml to include the following Helm values.

2. Create a TLS secret from a given public/private PEM formatted key pair.

3. Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

Refer to the Traefik documentation for further assistance.