May 2018
Intermediate to advanced
554 pages
13h 51m
English
Similar to the last session, let's start and enable kubelet first:
// now you're in the second master$ sudo systemctl enable kubelet && sudo systemctl start kubelet
After we have set up the first master, we should share newly generated certificates and keys with the whole system. It makes sure that the masters are secured in the same manner:
$ sudo scp -r root@$FIRST_MASTER_IP:/etc/kubernetes/pki/* /etc/kubernetes/pki/
You will have found that several files such as certificates or keys are copied to the /etc/kubernetes/pki/ directly, where they can only be accessed by the root. However, we are going to remove the files apiserver.crt and apiserver.key. It is because these files should ...
Read now
Unlock full access