𧩠Details of the certManager Field
The certManager field defines the configuration of the certificate manager integrated into the Kubernetes cluster.
It allows enabling or disabling the component and customizing its behavior through specific values.
certManager:
enabled: true
valuesOverride:
certManager:
installCRDs: true
prometheus:
enabled: false
enabled (boolean) β Requiredβ
Descriptionβ
Indicates whether cert-manager is enabled (true) or disabled (false) in the cluster configuration.
When disabled, no cert-manager-related components are deployed.
Exampleβ
enabled: true
valuesOverride (Object) β Requiredβ
Descriptionβ
Allows overriding the default values used for deploying cert-manager. This field is generally used to inject custom Helm parameters (such as images, resources, or ACME configurations).
Internal Fieldsβ
| Field | Type | Required | Description |
|---|---|---|---|
installCRDs | boolean | β | Installs the Custom Resource Definitions required by cert-manager |
prometheus.enabled | boolean | β | Enables or disables Prometheus metrics export |
Exampleβ
valuesOverride:
certManager:
installCRDs: true
Complete Examplesβ
Cert-Managerβ
Automated management of SSL/TLS certificates.
spec:
addons:
certManager:
enabled: true
valuesOverride:
certManager:
installCRDs: true
prometheus:
enabled: true
Advanced Cert-Manager Configurationβ
spec:
addons:
certManager:
enabled: true
valuesOverride:
certManager:
# Default issuer configuration
global:
leaderElection:
namespace: cert-manager
# Prometheus metrics
prometheus:
enabled: true
servicemonitor:
enabled: true
# Pod resources
resources:
requests:
cpu: 10m
memory: 32Mi
limits:
cpu: 100m
memory: 128Mi
π‘ Best Practicesβ
- Keep
enabled: trueto ensure automatic TLS certificate management. - Use
valuesOverrideto adjust Helm parameters without modifying global default values. - Verify version compatibility between
cert-managerand the Kubernetes version in use. - Enable
installCRDsonly during the first installation to avoid resource conflicts. - Disable
prometheus.enabledif monitoring is not required to reduce cluster load.