How to configure CA for HTTPS JWT authentication on Red Hat OpenShift Service Mesh

Solution Verified - Updated -

Issue

How to configure a private CA for HTTPS JWT authentication on Red Hat Service Mesh ?
When having an external HTTPS SSO solution for JWT authentication in Service Mesh, istiod logs the following errors:

"error model Failed to fetch public key from '...jwk_uri': Get '...jwk_uri' : x509: certificate signed by unknown authority"

Environment

Red Hat OpenShift Container Platform 4.8 and above
Red Hat OpenShift Service Mesh v2.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content