Hi there!
I successfully deployed a single control plane in a single network with Azure clusters. However, I cannot run the installation in a shared gateways configuration for a multi-network scenario as described in the documentation (https://istio.io/docs/setup/install/multicluster/shared-gateways/). I tried different Istio versions 1.2.9, 1.3.3 and 1.3.4 with no result.
Following the installation steps in the main cluster results in handshake failures in citadel:
...
2019-11-08T11:13:09.537520Z info grpc: Server.Serve failed to complete security handshake from "10.1.0.99:37404": remote error: tls: unknown certificate
2019-11-08T11:13:09.937074Z info grpc: Server.Serve failed to complete security handshake from "10.1.0.99:37412": remote error: tls: unknown certificate
2019-11-08T11:13:10.018011Z info grpc: Server.Serve failed to complete security handshake from "10.1.0.99:37406": remote error: tls: unknown certificate
...
I found a similar issue here but I couldn’t successfully applied the proposed solution. I made some research but I did not find any other references to this problem. This error is in the main example so I would expect more people to hit this issue.
I would appreciate any help or comments.