diff --git a/admin/README.md b/admin/README.md
index 8e0ccd407995cb316431fb87802dd2edca6af616..9d6a451d138561a85ab2469bdc4775b151a4151b 100644
--- a/admin/README.md
+++ b/admin/README.md
@@ -174,4 +174,36 @@ kubectl delete sc/local-large-cache
 
 Similar to Local Large Cache above, but larger available space. Note this
 should only be used for testing as data will be deleted when the claim
-is removed.
\ No newline at end of file
+is removed.
+
+
+## Configure HTTPS on Ingress
+
+Web services being served on the cluster via HTTP can be made available via
+HTTPS by enabling TLS on the Ingress controller of the cluster. The below
+instructions will walk through how to enable this.
+
+First, we must create a Secret to store the certificates. For SSEC-based
+services, certificates should be requested from Technical Computing (TC).
+To create the secret, have the certificate file and key file available in
+your current directory and run:
+
+```
+kubectl create secret tls mysite-tls-certs --cert=mycert.crt --key=mycert.key
+```
+
+Where `mysite-tls-certs` is the name of the secret, `tls` is the type of the
+secret, and `mycert.crt` and `mycert.key` are the actual certificate files.
+Make sure if this certificate is for a specific namespace that you add
+`-n mynamespace`.
+Then we need to make sure our Service definition includes something like:
+
+```bash
+  tls:
+  - hosts:
+      - mysite.ssec.wisc.edu
+    secretName: mysite-tls-certs
+```
+
+Once this is deployed the certificate should now be used when requesting
+the HTTPS version of your service.
diff --git a/ci_geosphere-test/values-mapcache.yaml b/ci_geosphere-test/values-mapcache.yaml
index d0d0345eaf403d1bab73df0acd392fbac4fdb9b7..66d440c42ea4f14bb1a0b5e05ca8a605d491bb85 100644
--- a/ci_geosphere-test/values-mapcache.yaml
+++ b/ci_geosphere-test/values-mapcache.yaml
@@ -17,3 +17,19 @@ ingress:
   hosts:
     - host: geosphere-test.ssec.wisc.edu
       paths: ["/mapcache"]
+    - host: geosphere1-test.ssec.wisc.edu
+      paths: ["/mapcache"]
+    - host: geosphere2-test.ssec.wisc.edu
+      paths: ["/mapcache"]
+    - host: geosphere3-test.ssec.wisc.edu
+      paths: ["/mapcache"]
+    - host: geosphere4-test.ssec.wisc.edu
+      paths: ["/mapcache"]
+  tls:
+    - hosts:
+        - "geosphere-test.ssec.wisc.edu"
+        - "geosphere1-test.ssec.wisc.edu"
+        - "geosphere2-test.ssec.wisc.edu"
+        - "geosphere3-test.ssec.wisc.edu"
+        - "geosphere4-test.ssec.wisc.edu"
+      secretName: "geosphere-tls-certs"
diff --git a/ci_geosphere-test/values-mapserver.yaml b/ci_geosphere-test/values-mapserver.yaml
index 3c06f10ec5fecb62d14ba88f061e6f6ec521dd87..4b233c8567fa01b8cfee9a4a841c4fb7b879d0b4 100644
--- a/ci_geosphere-test/values-mapserver.yaml
+++ b/ci_geosphere-test/values-mapserver.yaml
@@ -14,4 +14,8 @@ ingress:
   enabled: true
   hosts:
     - host: geosphere-test.ssec.wisc.edu
-      paths: ["/wms", "/wms_times"]
\ No newline at end of file
+      paths: ["/wms", "/wms_times"]
+  tls:
+    - hosts:
+        - "geosphere-test.ssec.wisc.edu"
+      secretName: "geosphere-tls-certs"