# TLS/SSL

## Manual

In Kubernetes, there are tools to help you manage certificates and achieve a TLS connection. This is easier than making a custom architecture using the reverse proxy method. You can read more about managing certificates with Kubernetes at the following link:

* [Manage TLS Certificates in a Cluster](https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster/)

## Using cert-manager

[cert-manager](https://cert-manager.io/) is a cloud native application that manages certificates for you. It includes mechanisms to ask for Let's Encrypt certificates automatically and get certificates from [HashiCorp Vault](https://www.vaultproject.io/), or you can use your own certificates generated by a certificate authority (CA) or a self-signed certificate.