OpenShift health check not working with HTTPS scheme or mutual auth

Solution Verified - Updated -

Issue

  • Unable to successfully configure livenessProbe over HTTPS port. The setup uses mutual authentication. The documentation is not clear on how to configure this setup.

  • Sample livenessProbe snippet used in the deployment:

        livenessProbe:
          httpGet:
            path: /healthz
            port: 8443
            scheme: HTTPS
          initialDelaySeconds: 120
          timeoutSeconds: 5
          periodSeconds: 10
          successThreshold: 1
          failureThreshold: 3
  • Fails with the following message:
Liveness probe failed: Get https://10.x.x.103:8082/healthz: EOF
  • After this, pods go into a CrashLoopBackOff state.

Environment

  • Red Hat OpenShift Container Platform
    • 3.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content