https://docs.cloudera.com/machine-learning/cloud/runtimes-release-notes/topics/ml-runtimes-known-issues-limitations.html
# 인증서 디렉토리 생성(기존 디렉토리 지정 가능)
mkdir -p /opt/cloudera/security/runtime_cert
# server 인증서, 중간 인증서, root-ca 인증서 체인 생성
cat $SERVER_CERT.crt $INTERMEDIATE_CERT.crt $ROOT-CA.crt > /opt/cloudera/security/runtime_cert/cert-chain.crt
# private registry 인증서가 별도로 존재할 경우 인증서 체인에 추가
cat $REGISTRY_SERVER_CERT.crt >> /opt/cloudera/security/runtime_cert/cert-chain.crt
# global ca 인증서 체인에 추가
cat /etc/ssl/certs/ca-bundle.crt >> /opt/cloudera/security/runtime_cert/cert-chain.crt
kubectl edit deployment runtime-manager
전략...
volumeMounts:
# runtime manager 마운트 경로
- mountPath: /etc/ssl/certs/ca-certificates.crt
name: runtimecert
subPath: cert-chain.crt
...중략...
volumes:
# host 경로
- hostPath:
path: /opt/cloudera/security/runtime_cert/
type: ""
name: runtimecert