Hello! Im trying to pass admin domain cert to flyt...
# ask-the-community
h
Hello! Im trying to pass admin domain cert to flytecli but not working! What am I missing?
Copy code
cat ./flyteconfig.yaml
admin:
  endpoint: dns:///localhost:8089
  insecure: true
  insecureSkipVerify: true
  authType: ClientSecret
  clientId: flytepropeller
  clientSecretEnvVar: [MASKED]
  caCertFilePath: ./flyte_cert.cer

{"json":{},"level":"warning","msg":"failed to get token: %!w(*url.Error=\u0026{Post https://<DOMAIN>/oauth2/token {0xc000ad8000 \u003cnil\u003e \u003cnil\u003e}})","ts":"2023-08-10T17:59:58Z"}
Error: Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post "https://<DOMAIN>/oauth2/token": x509: certificate signed by unknown authority
{"json":{},"level":"error","msg":"Connection Info: [Endpoint: dns:///localhost:8089, InsecureConnection?: true, AuthMode: ClientSecret]: rpc error: code = Unauthenticated desc = transport: per-RPC creds failed due to error: failed to get token: Post \"https://<DOMAIN>/oauth2/token\": x509: certificate signed by unknown authority","ts":"2023-08-10T17:59:58Z"}
y
if you’re using a cert, should insecure be false?
also the cert is for talking to admin, which auth provider are you using?
h
but im hitting endpoint localhost:8089 after port frorwarding
http service behind ingress and auth using external auth oidc and internal clinetsecret
y
there’s only one endpoint though… it’s the admin host. what’s your port forward command?