so, i tried import tls-additional-ca into rancher but no affect.
i found on your advice ( here :
Build own crt file with all required CA certs and mount it to the /etc/ssl/certs/ca-certificates.crt (file location is valid for docker images based on the Debian) in the Grafana container.
now, when i enable tls check [ tls_skip_verify_insecure = false ] in grafana.ini , i do not get x509 error and login works.
logs:
t=2022-10-25T09:59:07+0000 lvl=info msg="state check" logger=oauth queryState=9229d03422f27de2917f1641c5d8004648bf3832a3051ec18756e5796cdd09a8 cookieState=9229d03422f27de2917f1641c5d8004648bf3832a3051ec18756e5796cdd09a8
t=2022-10-25T09:59:07+0000 lvl=info msg="Successful Login" logger=http.server User=admin@admin.com
t=2022-10-25T09:59:07+0000 lvl=info msg="Request Completed" logger=context userId=0 orgId=1 uname= method=GET path=/login/generic_oauth status=302 remote_addr=10.0.1.129 time_ms=81 size=32 referer=
but,
I logged into pod grafana and check file /etc/ssl/certs/ca-certificates.crt if it contains my certificate, but I could not find it…is there something what is missing to me ?
Thank You