diff --git a/README.md b/README.md
index 4bbc8b5da3fe367f3a264b8e47aaab859afd656d..ab0b384c65b2c6a8a69a9aab9d53997298484e29 100644
--- a/README.md
+++ b/README.md
@@ -36,6 +36,7 @@ This toolchain is still under development. Before it will be used in production
 - [x] Automate system configuration using Kubernetes (system-upgrade-controller)
 - [x] Provide an fully encrypted (handled on host level) storage class (longhorn)
 - [x] Deploy cert-manager
+- [ ] Deploy kubelet with proper certificates
 - [ ] Deploy credentials for cert-manager
 - [ ] Automate ingress-controller default certificate deployment
 - [ ] Automate ingress-controller configuration for proxy-protocol
diff --git a/infrastructure/kube-system/metrics-server.yaml b/infrastructure/kube-system/metrics-server.yaml
index 567342943071cdee3388acc8d543d660b9740d0f..363f8fcd7989a28014f87a1ad7709ea0f64d4416 100644
--- a/infrastructure/kube-system/metrics-server.yaml
+++ b/infrastructure/kube-system/metrics-server.yaml
@@ -30,7 +30,7 @@ spec:
       - --cert-dir=/tmp
       - --kubelet-use-node-status-port
       - --metric-resolution=15s
-      - --kubelet-certificate-authority=/ca/ca.crt
+      - --kubelet-insecure-tls
     rbac:
       pspEnabled: true
     podDisruptionBudget: