3. Troubleshooting

3.1. I am installing the solution for the first time, but there are errors when I run setup.sh.

  1. Connect to the Azure File Share.

  2. In the terminal, enter the command kubectl logs deployment/db to investigate if the db deployment has any issues.

  3. Similarly, you may investigate the ejbca and signserver deployments with kubectl logs deployment/ejbca and kubectl logs deployment/signserver.

  4. Try reinstalling the Helm Chart, as in My Azure Resource Deployment was successful but the setup failed..

  5. If the issue cannot be resolved, contact us for support and include config/logs.txt and the deployment logs above.

3.2. The db logs repeatedly show FATAL: no pg_hba.conf entry for host "10.xx.xx.xx", user "xx", database "xx", no encryption.

This is known intermittent issue with the installation. See My Azure Resource Deployment was successful but the setup failed. to reinstall the Helm Chart in the Azure Kubernetes Cluster.

3.3. My Azure Resource Deployment was successful but the setup failed.

The following steps will reinstalling the Helm Chart in the AKS cluster. This also means that your File Share, along with any files you uploaded will be deleted and a new one will be deployed.

  1. In the Azure portal, enter Kubernetes Services in the search box. Select Kubernetes Services.

  2. Click inoQulate.

  3. Click Connect.

  4. Under the Set cluster context section, click Open Cloud Shell. It is not necessary to mount the File Share.

  5. Run the following commands.

    helm get values $(helm list -q) --all -o yaml > values.yaml
helm uninstall $(helm list -q)
helm install --generate-name oci://pqceepub.azurecr.io/helm/inoqulate --values values.yaml
rm values.yaml

  6. The solution will take about 15 minutes to be installed and ready for further setup.

  7. Continue your setup from Connect to the Azure File Share.

3.4. My Chrome/Firefox browser won’t recognise my SuperAdmin certificate.

The Chrome and Firefox browsers, and other browsers of the same derivative, use a certificate store different from the Operating System’s certificate store. You need to install your .p12 certificate or the ManagementCA.crt certificate in Chrome/Firefox’s certificate store instead.