Neo4j Browser won't establish a secure connection

So I have set up a cluster with neo4j-helm chart, and configured SSL certificates with k8s cert manager.

I am passing the following configuration via the helm chart's configMap:

  NEO4J_dbms_ssl_policy_bolt_enabled: "true"
  NEO4J_dbms_connector_bolt_tls__level: "REQUIRED"
  NEO4J_dbms_ssl_policy_https_enabled: "true"
  NEO4J_dbms_connector_http_enabled: "false"
  NEO4J_dbms_connector_https_enabled: "true"

As of now, I am able to:

  • connect cypher-shell using neo4j+s://; the neo4j:// protocol doesn't work as expected
  • open in the browser. SSL certificate is valid there.

However, trying to connect to neo4j+s:// using Neo4j Browser (either the standalone version or the one at mydomain:7473) results in the connection error:

WebSocket connection to 'wss://mydomain:7687/' failed: 

If I set bolt.tls_level to "OPTIONAL", I can connect via neo4j:// with both the browser and cypher-shell.

Am I missing something? Appreciate any help or clues.

Can you check the advertised addresses?
Perhaps browser tried to connect to the advertised address from the config?

You can check that with curl against the base URL 7474 or with call dbms.cluster.overview()

Browser needs to be loaded from an https URL like