mirrors
/
kubernetes-the-hard-way
mirror of https://github.com/kelseyhightower/kubernetes-the-hard-way
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Improve TLS bootstrapping documentation (#341) 

This commit enhances the clarity of the TLS bootstrapping documentation. 
It enables users to verify the correct configuration in their kube-apiserver.service file, whether they're double-checking their setup or ensuring no steps were missed before proceeding.
pull/634/head
bochi 2024-05-16 22:02:35 +02:00 committed by GitHub
parent 0d885c99a9
commit 25a1f2bec8
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docs/11-tls-bootstrapping-kubernetes-workers.md
View File

@ -30,7 +30,14 @@ So let's get started!
**kube-apiserver** - Ensure bootstrap token based authentication is enabled on the kube-apiserver.
`--enable-bootstrap-token-auth=true`
run this command on `controlplane01` :
```
grep 'enable-bootstrap-token-auth=true' /etc/systemd/system/kube-apiserver.service
```
expected output :
` --enable-bootstrap-token-auth=true \`
**kube-controller-manager** - The certificate requests are signed by the kube-controller-manager ultimately. The kube-controller-manager requires the CA Certificate and Key to perform these operations.