x509 Cert error when using a Git Channel which has internal CA

Solution In Progress - Updated -

Issue

We have deployed a Channel in ACM with type Git that is pointing to a git repository with an internal CA. When we try to subscribe to the channel the subscription fails to propagate.

Looking at the multicluster-operators-hub-subscription pod logs we see:

I0914 20:42:12.230457       1 mcmhub_controller.go:297] MCM Hub Reconciling subscription: example-ns/example-subscription
I0914 20:42:12.230747       1 gitrepo_sync.go:75] Subscription example-subscription has Git type channel.
I0914 20:42:12.231053       1 gitrepo.go:120] Cloning https://git.example.com/example.git into /tmp/example-subscription/master
E0914 20:42:12.319289       1 gitrepo.go:124] Get https://git.example.com/example.git/info/refs?service=git-upload-pack: x509: certificate signed by unknown authorityFailed to git clone: Get https://git.example.com/example.git/info/refs?service=git-upload-pack: x509: certificate signed by unknown authority
E0914 20:42:12.319330       1 gitrepo_sync.go:91] Get https://git.example.com/example.git/info/refs?service=git-upload-pack: x509: certificate signed by unknown authority

Environment

  • Red Hat Advanced Cluster Management for Kubernetes 2.0

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content