当前位置:网站首页>kubernetes 二进制安装(v1.20.16)(五)验证 master 部署
kubernetes 二进制安装(v1.20.16)(五)验证 master 部署
2022-06-11 12:53:00 【看、未来】
文章目录
状况
书接上文:kubernetes 二进制安装(v1.20.16)(四)部署 master 停了一天没有更新,因为出了点状况,在排查。
检查集群组件状态
生成连接集群证书配置
cd /opt/TLS/k8s/ssl
cat > admin-csr.json <<EOF
{
"CN": "admin",
"hosts": [],
"key": {
"algo": "rsa",
"size": 2048
},
"names": [
{
"C": "CN",
"L": "BeiJing",
"ST": "BeiJing",
"O": "system:masters",
"OU": "System"
}
]
}
EOF生成连接证书
[[email protected] ssl]# cfssl gencert -ca=ca.pem -ca-key=ca-key.pem -config=ca-config.json -profile=kubernetes admin-csr.json | cfssljson -bare admin
....
#查看已生成的证书
[[email protected] ssl]# ll admin*
-rw-r--r-- 1 root root 1009 Apr 3 14:52 admin.csr
-rw-r--r-- 1 root root 229 Apr 3 14:52 admin-csr.json
-rw------- 1 root root 1679 Apr 3 14:52 admin-key.pem
-rw-r--r-- 1 root root 1399 Apr 3 14:52 admin.pem生成kubeconfig文件
cd /opt/TLS/k8s/cfg
# 设置集群参数
kubectl config set-cluster kubernetes \
--certificate-authority=/opt/kubernetes/ssl/ca.pem \
--embed-certs=true \
--server=https://192.168.190.147:6443 \
--kubeconfig=/opt/TLS/k8s/cfg/config
# 设置客户端认证参数
kubectl config set-credentials cluster-admin \
--client-certificate=/opt/TLS/k8s/ssl/admin.pem \
--client-key=/opt/TLS/k8s/ssl/admin-key.pem \
--embed-certs=true \
--kubeconfig=/opt/TLS/k8s/cfg/config
#设置上下文参数
kubectl config set-context default \
--cluster=kubernetes \
--user=cluster-admin \
--kubeconfig=/opt/TLS/k8s/cfg/config
#设置默认上下文
kubectl config use-context default --kubeconfig=/opt/TLS/k8s/cfg/config分发文件
mkdir /root/.kube
scp /opt/TLS/k8s/cfg/config /root/.kube/config查看集群组件状态
#通过kubectl工具查看当前集群组件状态
[[email protected] cfg]# kubectl get cs
Warning: v1 ComponentStatus is deprecated in v1.19+
NAME STATUS MESSAGE ERROR
scheduler Healthy ok
etcd-0 Healthy {"health":"true"}
controller-manager Healthy ok
etcd-2 Healthy {"health":"true"}
etcd-1 Healthy {"health":"true"}
#输出以上信息说明Master节点组件运行正常我在排查的过程中添加了一个 apiserver 向外部访问的 client 证书,然后重新部署了一遍。 所以如果说你们部署到现在出现了失败,及时私信我,教程到这里还是没有问题的。
边栏推荐
- Chapter V data type (IV)
- kubernetes 二进制安装(v1.20.15)(七)加塞一个工作节点
- Clear the selected data in the modal box after the modal box is closed
- 中国 SaaS 发展落后美国 10 年,仍需借助创新、开源、并购等策略发力 | ArchSummit
- Dbutil auxiliary class, manual commit transaction, metadata
- Deep learning and CV tutorial (14) | image segmentation (FCN, segnet, u-net, pspnet, deeplab, refinenet)
- PADS使用之繪制原理圖
- Stone technology: R & D strength and excellent quality help upgrade the sweeping robot industry
- I am a graduating doctor majoring in mathematics. How should I choose an offer?
- Oracle database import data steps
猜你喜欢
What scenarios can the member management system of the multi guest swimming pool achieve?
刚高考完有些迷茫不知道做些什么?谈一谈我的看法
【bug解决】表单分页,显示总数据res.data.total
CS structure and BS structure
4K投影儀哪款性價比最高,當貝X3 Pro高亮128G存儲618值得看
Venue floor efficiency is so low? The key lies in these two aspects
Another way to achieve family reunion, 2022 flagship projection nut j10s is planted with grass
常用字体介绍
. 5 string
微软再曝“丑闻”:在办公室看 VR 黄片,“HoloLens 之父”即将离职!
随机推荐
Seckill multi-level cache ----- product details page
深度学习与CV教程(14) | 图像分割 (FCN,SegNet,U-Net,PSPNet,DeepLab,RefineNet)
[arcgis] City relevance analysis
Search without data after paged browsing
经营体育馆有哪些要素?
.net core 抛异常对性能影响的求证之路
模态框关闭后清空模态框里选择的数据
4. Locksupport and thread interruption
微软再曝“丑闻”:在办公室看 VR 黄片,“HoloLens 之父”即将离职!
馆客多游泳馆会员管理系统可以实现哪些场景?
What are the elements of running a gymnasium?
Dbutil auxiliary class, manual commit transaction, metadata
启封easy QF PDA帮助企业提升ERP的管理水平
[filter] design of time-varying Wiener filter based on MATLAB [including Matlab source code 1870]
Log management system, summary in multiple ways
Add function drop-down multiple selections to display the selected personnel
QQ pulls up Alipay H5 payment function
Ways to double the summer performance of natatoriums
求你了,不要再在对外接口中使用枚举类型了!
美容院管理系统如何解决门店运营的三大难题?