Skip to main content

Use mTLS with DDCR and Discovery Agent

This topic describes how you can configure mTLS with DDCR and Discovery Agent.

Chaos runner supports token-based authentication with the Harness Platform. If you want to add another authentication on top of Harness authentication, you can enable mTLS for the account.

DDCR

To configure mTLS in the DDCR, create a Kubernetes secret with the certificate and key in the target cluster and provide the following details.

If you don't want to create Kubernetes secrets in multiple clusters, you can install the agent proxy (aka Chaos Runner agent proxy) with mTLS key and certificate and provide the proxy URL in proxy setting.

Discovery Agent

To configure mTLS in the Discovery Agent, create a Kubernetes secret with the certificate and key in the target cluster and provide the following details.

If you don't want to create Kubernetes secrets in multiple clusters, you can install the Chaos Runner agent proxy with mTLS key and certificate and provide the proxy URL in proxy setting.