From 236e807cd0924ce7a0e598b17f66f0f759debda7 Mon Sep 17 00:00:00 2001 From: Mathias Albrecht <88004267+b0ustiflex@users.noreply.github.com> Date: Sun, 18 Jun 2023 16:48:54 +0200 Subject: [PATCH] Update 04-certificate-authority.md Update broken link for Node Authorization mode --- docs/04-certificate-authority.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/04-certificate-authority.md b/docs/04-certificate-authority.md index 1510993..152fe5a 100644 --- a/docs/04-certificate-authority.md +++ b/docs/04-certificate-authority.md @@ -107,7 +107,7 @@ admin.pem ### The Kubelet Client Certificates -Kubernetes uses a [special-purpose authorization mode](https://kubernetes.io/docs/admin/authorization/node/) called Node Authorizer, that specifically authorizes API requests made by [Kubelets](https://kubernetes.io/docs/concepts/overview/components/#kubelet). In order to be authorized by the Node Authorizer, Kubelets must use a credential that identifies them as being in the `system:nodes` group, with a username of `system:node:`. In this section you will create a certificate for each Kubernetes worker node that meets the Node Authorizer requirements. +Kubernetes uses a [special-purpose authorization mode](https://kubernetes.io/docs/reference/access-authn-authz/node/) called Node Authorizer, that specifically authorizes API requests made by [Kubelets](https://kubernetes.io/docs/concepts/overview/components/#kubelet). In order to be authorized by the Node Authorizer, Kubelets must use a credential that identifies them as being in the `system:nodes` group, with a username of `system:node:`. In this section you will create a certificate for each Kubernetes worker node that meets the Node Authorizer requirements. Generate a certificate and private key for each Kubernetes worker node: