From 22db68a4d6b16a2c7a1c8a1f08d8742981ad6a34 Mon Sep 17 00:00:00 2001 From: Sean Killeen Date: Fri, 7 Oct 2022 22:26:14 -0400 Subject: [PATCH] Back-ticks for items --- docs/04-certificate-authority.md | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/docs/04-certificate-authority.md b/docs/04-certificate-authority.md index 1510993..4bfae30 100644 --- a/docs/04-certificate-authority.md +++ b/docs/04-certificate-authority.md @@ -1,6 +1,6 @@ # Provisioning a CA and Generating TLS Certificates -In this lab you will provision a [PKI Infrastructure](https://en.wikipedia.org/wiki/Public_key_infrastructure) using CloudFlare's PKI toolkit, [cfssl](https://github.com/cloudflare/cfssl), then use it to bootstrap a Certificate Authority, and generate TLS certificates for the following components: etcd, kube-apiserver, kube-controller-manager, kube-scheduler, kubelet, and kube-proxy. +In this lab you will provision a [PKI Infrastructure](https://en.wikipedia.org/wiki/Public_key_infrastructure) using CloudFlare's PKI toolkit, [cfssl](https://github.com/cloudflare/cfssl), then use it to bootstrap a Certificate Authority, and generate TLS certificates for the following components: `etcd`, `kube-apiserver`, `kube-controller-manager`, `kube-scheduler`, `kubelet`, and `kube-proxy`. ## Certificate Authority @@ -202,7 +202,6 @@ kube-controller-manager-key.pem kube-controller-manager.pem ``` - ### The Kube Proxy Client Certificate Generate the `kube-proxy` client certificate and private key: @@ -289,7 +288,6 @@ kube-scheduler-key.pem kube-scheduler.pem ``` - ### The Kubernetes API Server Certificate The `kubernetes-the-hard-way` static IP address will be included in the list of subject alternative names for the Kubernetes API Server certificate. This will ensure the certificate can be validated by remote clients. @@ -389,7 +387,6 @@ service-account-key.pem service-account.pem ``` - ## Distribute the Client and Server Certificates Copy the appropriate certificates and private keys to each worker instance: