Mount CA Certificate

What is the best way to mount custom CA certificates to the Portworx pods when using the K8S operator for deployment?

This is needed to contact PC-Central to obtain a license via an HTTP proxy that uses SSL inspection and therefore the pods need access to the CA certificate.


If you are using portworx operator to deploy portworx, then you can mount your CA certs from a secret in portworx pods using the volume configuration in the StorageCluster spec.

This is like a combination of pod Volume and VolumeMount. Just create a secret with your CA cert and then edit your StorageCluster spec to add the volume mount.

  - name: central-ca-cert
    mountPath: /etc/pwx/custom/ca/cert
      secretName: k8s-secret-name