kubernetes-the-hard-way/docs/07-kubectl.md

# Configuring the Kubernetes Client - Remote Access

Run the following commands from the machine which will be your Kubernetes Client

## Download and Install kubectl

### OS X

```
wget https://storage.googleapis.com/kubernetes-release/release/v1.7.0/bin/darwin/amd64/kubectl
chmod +x kubectl
sudo mv kubectl /usr/local/bin
```

### Linux

```
wget https://storage.googleapis.com/kubernetes-release/release/v1.7.0/bin/linux/amd64/kubectl
chmod +x kubectl
sudo mv kubectl /usr/local/bin
```

## Configure Kubectl

In this section you will configure the kubectl client to point to the [Kubernetes API Server Frontend Load Balancer](04-kubernetes-controller.md#setup-kubernetes-api-server-frontend-load-balancer).

```
KUBERNETES_PUBLIC_ADDRESS=$(gcloud compute addresses describe kubernetes-the-hard-way \
  --region us-central1 \
  --format 'value(address)')
```

Also be sure to locate the CA certificate [created earlier](02-certificate-authority.md). Since we are using self-signed TLS certs we need to trust the CA certificate so we can verify the remote API Servers.

### Build up the kubeconfig entry

The following commands will build up the default kubeconfig file used by kubectl.

```
kubectl config set-cluster kubernetes-the-hard-way \
  --certificate-authority=ca.pem \
  --embed-certs=true \
  --server=https://${KUBERNETES_PUBLIC_ADDRESS}:6443
```

```
kubectl config set-credentials admin \
  --client-certificate=admin.pem \
  --client-key=admin-key.pem
```

```
kubectl config set-context kubernetes-the-hard-way \
  --cluster=kubernetes-the-hard-way \
  --user=admin
```

```
kubectl config use-context kubernetes-the-hard-way
```

At this point you should be able to connect securly to the remote API server:

```
kubectl get componentstatuses
```

```
NAME                 STATUS    MESSAGE              ERROR
controller-manager   Healthy   ok                   
scheduler            Healthy   ok                   
etcd-2               Healthy   {"health": "true"}   
etcd-0               Healthy   {"health": "true"}   
etcd-1               Healthy   {"health": "true"}  
```

```
kubectl get nodes
```

```
NAME      STATUS    AGE       VERSION
worker0   Ready     7m        v1.6.1
worker1   Ready     5m        v1.6.1
worker2   Ready     2m        v1.6.1
```
update docs 2016-07-07 23:28:46 +03:00			`# Configuring the Kubernetes Client - Remote Access`
update docs 2016-07-07 23:02:28 +03:00
Node details to run client commands from docs/06.kubectl.md does not instruct from which node those commands must be run. The previous modules does explain that. For a newbie its helpful to tell them from which node they must run commands of doc/06-kubectl.md. This PR has a minor update about that information. 2017-01-06 01:44:05 +03:00			`Run the following commands from the machine which will be your Kubernetes Client`

update docs 2016-07-07 23:26:27 +03:00			`## Download and Install kubectl`
update docs 2016-07-07 23:02:28 +03:00
update docs 2016-07-07 23:26:27 +03:00			`### OS X`

			```
Update 07-kubectl.md as per my other pull request, using 1.7.0 fixes an error with etcd configuration on the Kubernetes cluster. 2017-07-11 22:05:57 +03:00			`wget https://storage.googleapis.com/kubernetes-release/release/v1.7.0/bin/darwin/amd64/kubectl`
use individual release binaries 2016-07-08 14:23:46 +03:00			`chmod +x kubectl`
clean up docs 2016-07-09 06:59:01 +03:00			`sudo mv kubectl /usr/local/bin`
update docs 2016-07-07 23:26:27 +03:00			```

			`### Linux`

			```
Update 07-kubectl.md as per my other pull request, using 1.7.0 fixes an error with etcd configuration on the Kubernetes cluster. 2017-07-11 22:05:57 +03:00			`wget https://storage.googleapis.com/kubernetes-release/release/v1.7.0/bin/linux/amd64/kubectl`
use individual release binaries 2016-07-08 14:23:46 +03:00			`chmod +x kubectl`
clean up docs 2016-07-09 06:59:01 +03:00			`sudo mv kubectl /usr/local/bin`
update docs 2016-07-07 23:26:27 +03:00			```

			`## Configure Kubectl`
update docs 2016-07-07 23:02:28 +03:00
Fix links 2016-07-11 20:47:34 +03:00			`In this section you will configure the kubectl client to point to the [Kubernetes API Server Frontend Load Balancer](04-kubernetes-controller.md#setup-kubernetes-api-server-frontend-load-balancer).`
update docs 2016-07-07 23:39:33 +03:00
			```
update to Kubernetes 1.6 2017-03-25 21:45:32 +03:00			`KUBERNETES_PUBLIC_ADDRESS=$(gcloud compute addresses describe kubernetes-the-hard-way \`
			`--region us-central1 \`
clean up docs 2016-07-09 03:45:22 +03:00			`--format 'value(address)')`
update docs 2016-07-07 23:39:33 +03:00			```

Fix links 2016-07-11 20:47:34 +03:00			`Also be sure to locate the CA certificate [created earlier](02-certificate-authority.md). Since we are using self-signed TLS certs we need to trust the CA certificate so we can verify the remote API Servers.`
update docs 2016-07-07 23:39:33 +03:00
			`### Build up the kubeconfig entry`

			`The following commands will build up the default kubeconfig file used by kubectl.`

update docs 2016-07-07 23:26:27 +03:00			```
			`kubectl config set-cluster kubernetes-the-hard-way \`
			`--certificate-authority=ca.pem \`
clean up docs 2016-07-09 03:46:16 +03:00			`--embed-certs=true \`
add support for aws 2016-09-11 13:53:13 +03:00			`--server=https://${KUBERNETES_PUBLIC_ADDRESS}:6443`
update docs 2016-07-07 23:02:28 +03:00			```

update docs 2016-07-07 23:39:33 +03:00			```
update to Kubernetes 1.6 2017-03-24 05:48:14 +03:00			`kubectl config set-credentials admin \`
			`--client-certificate=admin.pem \`
			`--client-key=admin-key.pem`
update docs 2016-07-07 23:39:33 +03:00			```

update docs 2016-07-07 23:02:28 +03:00			```
update to Kubernetes 1.6 2017-03-25 21:45:32 +03:00			`kubectl config set-context kubernetes-the-hard-way \`
update docs 2016-07-07 23:26:27 +03:00			`--cluster=kubernetes-the-hard-way \`
			`--user=admin`
update docs 2016-07-07 23:02:28 +03:00			```

			```
update to Kubernetes 1.6 2017-03-25 21:45:32 +03:00			`kubectl config use-context kubernetes-the-hard-way`
update docs 2016-07-07 23:02:28 +03:00			```

update docs 2016-07-07 23:26:27 +03:00			`At this point you should be able to connect securly to the remote API server:`

			```
			`kubectl get componentstatuses`
			```
update to Kubernetes 1.6 2017-03-25 21:45:32 +03:00
update docs 2016-07-07 23:26:27 +03:00			```
			`NAME STATUS MESSAGE ERROR`
			`controller-manager Healthy ok`
			`scheduler Healthy ok`
			`etcd-2 Healthy {"health": "true"}`
			`etcd-0 Healthy {"health": "true"}`
			`etcd-1 Healthy {"health": "true"}`
			```

			```
			`kubectl get nodes`
			```
update to Kubernetes 1.6 2017-03-25 21:45:32 +03:00
update docs 2016-07-07 23:02:28 +03:00			```
add docs on using custom kubeconfigs 2017-03-24 14:08:34 +03:00			`NAME STATUS AGE VERSION`
Bump kubernetes to v1.6.1 2017-04-12 17:09:55 +03:00			`worker0 Ready 7m v1.6.1`
			`worker1 Ready 5m v1.6.1`
			`worker2 Ready 2m v1.6.1`
Fix links 2016-07-11 20:47:34 +03:00			```