Refreshing ArgoCD Certificates When Expired

Refreshing ArgoCD Certificates When Expired

1. Edit ArgoCD Secret

Use kubectl edit to edit the ArgoCD secret in the appropriate namespace (devtroncd in this case). Find the data section and delete the lines for tls.crt and tls.key:
  1. kubectl edit secret argocd-secret -n devtroncd

2. Delete Lines for tls.crt and tls.key

Once you've opened the ArgoCD secret for editing, find the data section and delete the lines for tls.crt and tls.key. Save your changes and exit the editor.

3. Delete ArgoCD Server Pod

Use kubectl delete pod to delete the ArgoCD server pod. This will cause a new pod to be created with the updated certificate
  1. kubectl delete pod -n devtroncd <argocd-server-pod-name>
Replace <argocd-server-pod-name> with the name of the ArgoCD server pod

    4. Delete Devtron Pod

    Wait for two minutes and then delete the Devtron pod using kubectl delete pod. This will force the Devtron pod to use the new certificate.
    1. kubectl delete pod -n devtroncd -l app=devtron
    This command deletes the Devtron pod in the devtroncd namespace with the label app=devtron.

    Following these steps should allow you to refresh the ArgoCD certificates when they have expired.

      • Related Articles

      • Unable to login with admin password or reset devtron admin password

        Debug: Run the command for admin credentials and use it for login in dashboard: kubectl -n devtroncd get secret devtron-secret -o jsonpath='{.data.ADMIN_PASSWORD}' | base64 -d If you are getting an error message of "invalid username or password" or ...