Create a proxy configuration in VMware Tanzu Mission Control that allows outbound traffic through the proxy that protects your managed clusters.
A proxy configuration identifies the proxy server for one or more clusters and the credentials required to authorize outbound traffic through it. When you create a proxy configuration object, you can use it when registering a Tanzu Kubernetes Grid management cluster, provisioning a workload cluster, or attaching a cluster.
For information about using this feature with Tanzu Kubernetes Grid Service clusters, see Create a Proxy Configuration Object for a Tanzu Kubernetes Grid Service Cluster Running in vSphere with Tanzu.
Log in to the Tanzu Mission Control console, as described in Log In to the Tanzu Mission Control Console.
- To create a proxy configuration, you must be associated with the organization.credential.admin role.
kubectl get kubeadmconfig -n tkg-system
- In the left navigation pane of the Tanzu Mission Control console, click Administration.
- On the Administration page, click the Proxy Configuration tab.
- Click Create Proxy Configuration.
- On the Create proxy page, enter a name for the proxy configuration.
- You can optionally provide a description.
- Specify the URL or IP address of the proxy server, and the port on which outbound traffic is allowed.
- Enter the credentials (username and password) that permit outbound traffic through the proxy server.
- You can optionally enter an alternative server/port and username/password for HTTPS traffic.
- In No proxy list, you can optionally specify a comma-separated list of outbound destinations that must bypass the proxy server.
- If your proxy uses a root certificate or CA certificate (for example, if your proxy uses SSL inspection), enter the certificate into the provided box.
- Click Create.
What to do next
After you create a proxy configuration object, you can use it when registering a Tanzu Kubernetes Grid management cluster, provisioning a workload cluster, or attaching a conformant Kubernetes cluster.