How to configure local kubeconfig with different CA signing certificates

Solution Verified - Updated -


  • How to configure the kubeconfig with new signing certificates from API or from Ingress.
  • When trying to login to the OpenShift cluster - the error is shown:
Unable to connect to the server: x509: certificate signed by unknown authority
  • How to configure the local kubeconfig to fix the error above?
  • How to configure the local kubeconfig to not use --insecure-skip-tls-verify=true option?
  • How to create a kubeconfig for developers to download locally without any further configuration?


  • Red Hat OpenShift Container Platform:
    • 4.12
    • 4.13
    • 4.14
    • 4.15

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content