Create CSR:
Upload CSR file
Convert the key and the cer to base 64
Update Secret yaml
Update Ingress

$ openssl genrsa -out mysite.ovi.com.key 2048
$ openssl req -out mysite.ovi.com.csr -key mysite.ovi.com.key -new -sha256

Convert the key and the cer to base 64

$ cat mysite.ovi.com.cer | base64 -w 0
$ cat mysite.ovi.com.key | base64 -w 0

 

Update Secret yaml

apiVersion: v1
kind: Secret
metadata:
name: ovi-cert
data:
#tls.crt: <base64_encoded_cert>
tls.crt:

ASOtLS1CRUdJTiBDRVJUSUZJ…ZzDQpaU0JrZFNCRFlXNWhaR0V4U1RCSEJnTlZCQXNUUUZKdmV…pJZ1FtRnVjWFZsSUZKdmVXRaR0V3SGhjTk1…VRUJoTUNRMEV4T….0tLS0NCg==
#tls.key: <base64_encoded_key>
tls.key: LS0tLS1CRUdJTiBSU0EgUFJJVkFURSBLRVkt…cHU5ZUJDQWJZR3JUaWo1ejVTMmxKRTM1VW…WMkk2WW1QMXVzc1ZsdjRBd3U3O…ZRdzBSYVQ1WGovBQUklWQVRFIEtFWS0tLS0tCg==
type: Opaque

 

Update Ingress 

annotations:
nginx.ingress.kubernetes.io/force-ssl-redirect: “true”
spec:
tls:
– hosts:
– mysite.ovi.com
secretName: ovi-cert