๋ฒ๊ทธ ๋ณด๊ณ : (๋ด ์๊ฐ์๋?)
๋ฌด์จ ์ผ์ด ์์๋์ง :
Ubuntu 16.04์์ ๋ค์ ๋จ๊ณ๋ฅผ ์คํํ์ต๋๋ค.
sudo apt-get update
sudo apt-get upgrade
sudo su
kubeadm reset
kubeadm init --token [redacted] --apiserver-advertise-address=192.168.13.1 --pod-network-cidr=10.244.0.0/16
exit
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
kubectl get nodes
์ด ์์ ์ ์ํํ๋ฉด ๋ค์์ ๋ฐ์ต๋๋ค.
Unable to connect to the server: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "kubernetes")
kubectl
, kubeadm
๋ฐ kubelet
(๋ฅผ ์ฌ์ฉํ๋๋ผ๋ --purge
) ๋ช ๋ฒ ์ ๊ฑฐํ๋ ค๊ณ ์๋ํ์ง๋ง(kubeadm 1.7) ) ์๋ํ๋ admin.conf
์์ฑํ์ง ์์ต๋๋ค. ๊ทธ๋ฌ๋ ๋ค์์ ์คํํฉ๋๋ค.
curl --cacert /etc/kubernetes/pki/ca.crt --cert /etc/kubernetes/pki/apiserver-kubelet-client.crt --key /etc/kubernetes/pki/apiserver-kubelet-client.key https://192.168.13.1:6443
๊ทธ๋ฆฌ๊ณ ์ป๋ค:
{
"paths": [
"/api",
"/api/v1",
"/apis",
"/apis/",
"/apis/apiextensions.k8s.io",
"/apis/apiextensions.k8s.io/v1beta1",
"/apis/apiregistration.k8s.io",
"/apis/apiregistration.k8s.io/v1beta1",
"/apis/apps",
"/apis/apps/v1beta1",
"/apis/authentication.k8s.io",
"/apis/authentication.k8s.io/v1",
"/apis/authentication.k8s.io/v1beta1",
"/apis/authorization.k8s.io",
"/apis/authorization.k8s.io/v1",
"/apis/authorization.k8s.io/v1beta1",
"/apis/autoscaling",
"/apis/autoscaling/v1",
"/apis/batch",
"/apis/batch/v1",
"/apis/certificates.k8s.io",
"/apis/certificates.k8s.io/v1beta1",
"/apis/extensions",
"/apis/extensions/v1beta1",
"/apis/networking.k8s.io",
"/apis/networking.k8s.io/v1",
"/apis/policy",
"/apis/policy/v1beta1",
"/apis/rbac.authorization.k8s.io",
"/apis/rbac.authorization.k8s.io/v1alpha1",
"/apis/rbac.authorization.k8s.io/v1beta1",
"/apis/settings.k8s.io",
"/apis/settings.k8s.io/v1alpha1",
"/apis/storage.k8s.io",
"/apis/storage.k8s.io/v1",
"/apis/storage.k8s.io/v1beta1",
"/healthz",
"/healthz/autoregister-completion",
"/healthz/ping",
"/healthz/poststarthook/apiservice-registration-controller",
"/healthz/poststarthook/apiservice-status-available-controller",
"/healthz/poststarthook/bootstrap-controller",
"/healthz/poststarthook/ca-registration",
"/healthz/poststarthook/extensions/third-party-resources",
"/healthz/poststarthook/generic-apiserver-start-informers",
"/healthz/poststarthook/kube-apiserver-autoregistration",
"/healthz/poststarthook/rbac/bootstrap-roles",
"/healthz/poststarthook/start-apiextensions-controllers",
"/healthz/poststarthook/start-apiextensions-informers",
"/healthz/poststarthook/start-kube-aggregator-informers",
"/healthz/poststarthook/start-kube-apiserver-informers",
"/logs",
"/metrics",
"/swagger-2.0.0.json",
"/swagger-2.0.0.pb-v1",
"/swagger-2.0.0.pb-v1.gz",
"/swagger.json",
"/swaggerapi",
"/ui",
"/ui/",
"/version"
]
}
์์ํ๋ ์ผ :
kubeadm init
๋ฅผ ํตํด ๋ง์คํฐ๋ฅผ ์ด๊ธฐํํ ํ kubectl
๋ฅผ ์ฌ์ฉํ์ฌ ๋คํธ์ํฌ ํ๋ฌ๊ทธ์ธ์ ์ค์นํ ์ ์์ ๊ฒ์ผ๋ก ์์ํ์ต๋๋ค. x509
์ด๋ฏ๋ก ๊ทธ๋ ๊ฒ ํ ์ ์์ต๋๋ค.
ํ๊ฒฝ :
kubectl version
): 1.7uname -a
): Linux radium-control 4.4.0-83-generic #106-Ubuntu SMP Mon Jun 26 17:54:43 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux@carldanley ์ด ๋ฌธ์ ์ ๋ํ ์๋ช
๋ ์ด๋ธ์ด ์์ต๋๋ค. ๋ค์์ ํตํด ์๋ช
๋ ์ด๋ธ ์
(1) ์๊ทธ๋ฅผ ์ธ๊ธ: @kubernetes/sig-<team-name>-misc
์: API ๊ธฐ๊ณ์ ๊ฒฝ์ฐ @kubernetes/sig-api-machinery-*
(2) ์๋์ผ๋ก ๋ ์ด๋ธ ์ง์ : /sig <label>
์: ์ ํธ/ํ์ฅ์ฑ์ ๊ฒฝ์ฐ /sig scalability
_์ฐธ๊ณ : ๋ฐฉ๋ฒ (1)์ ํ์ ์๋ฆผ์ ํธ๋ฆฌ๊ฑฐํฉ๋๋ค. ํ ๋ชฉ๋ก์ ์ฌ๊ธฐ์์ , ๋ ์ด๋ธ ๋ชฉ๋ก์ ์ฌ๊ธฐ ์์ ์ฐพ์ ์ ์์ต๋๋ค _
/sig ํด๋ฌ์คํฐ ์๋ช ์ฃผ๊ธฐ
ํ์ค์ด ๋์์ด๋๋ค๋ฉด,ํ์ง๋ง ๋ ๊ฐ์ํ๋ค ๋ด๊ฐ ๋ณต์ฌ, ์ด์ ์ค์น ๊ฐ์ด๋๋ฅผ ์ฌ์ฉ ๊นจ๋ฌ์๋ค /etc/kubernetes/admin.conf
์ ~/.kube/admin.conf
๋ฐ ์ค์ $KUBECONFIG=$HOME/.kube/admin.conf
. ํ๊ฒฝ ๋ณ์๋ฅผ ์ง์ฐ๊ณ kubectl
๊ธฐ๋ณธ์ ์ผ๋ก ~/.kube/config
ํฉ๋๋ค.
๋๋ ๋ํ kubeadm v1.7์ ์ฌ์ฉํ์ฌ ์ด๊ฒ์ ๋ณด๊ณ ์์ต๋๋ค - ๋ ธ๋๊ฐ ํด๋ฌ์คํฐ์ ํฉ๋ฅํ๋ ๊ฒ์ ๋ง๊ณ ์์ต๋๋ค
๋ด ์ค์น์ ๋ํด ๋์ผํ ์ค๋ฅ๊ฐ ๋ฐ์ํ์ต๋๋ค. v1.6.5 ๋ฐ 1.6.7๋ก ์๋ํ๋ฉด ์ ๋๋ก ์๋ํฉ๋๋ค.
๋์ผํ ๋ฌธ์ ๊ฐ ์์ต๋๋ค.
.
( kubeadm init
๊ด์ฐฎ์ ๋ณด์ธ๋ค)
ns2 ~ # kubeadm init
[kubeadm] WARNING: kubeadm is in beta, please do not use it for production clusters.
[init] Using Kubernetes version: v1.7.3
[init] Using Authorization modes: [Node RBAC]
[preflight] Running pre-flight checks
[preflight] WARNING: docker version is greater than the most recently validated version. Docker version: 17.03.1-ce. Max validated version: 1.12
[preflight] WARNING: no supported init system detected, skipping checking for services
[preflight] WARNING: no supported init system detected, skipping checking for services
[preflight] WARNING: no supported init system detected, skipping checking for services
[preflight] WARNING: socat not found in system path
[preflight] No supported init system detected, won't ensure kubelet is running.
[certificates] Generated CA certificate and key.
[certificates] Generated API server certificate and key.
[certificates] API Server serving cert is signed for DNS names [ns2 kubernetes kubernetes.default kubernetes.default.svc kubernetes.default.svc.cluster.local] and IPs [10.96.0.1 ip_of_my_server]
[certificates] Generated API server kubelet client certificate and key.
[certificates] Generated service account token signing key and public key.
[certificates] Generated front-proxy CA certificate and key.
[certificates] Generated front-proxy client certificate and key.
[certificates] Valid certificates and keys now exist in "/etc/kubernetes/pki"
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/controller-manager.conf"
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/scheduler.conf"
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/admin.conf"
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/kubelet.conf"
[apiclient] Created API client, waiting for the control plane to become ready
[apiclient] All control plane components are healthy after 36.004283 seconds
[token] Using token: 62af23.9fba33a48799d425
[apiconfig] Created RBAC rules
[addons] Applied essential addon: kube-proxy
[addons] Applied essential addon: kube-dns
Your Kubernetes master has initialized successfully!
To start using your cluster, you need to run (as a regular user):
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
You should now deploy a pod network to the cluster.
Run "kubectl apply -f [podnetwork].yaml" with one of the options listed at:
http://kubernetes.io/docs/admin/addons/
You can now join any number of machines by running the following on each node
as root:
kubeadm join --token [some string] [ip_of_my_server]:6443
( kubeadm join
๊ด์ฐฎ์ ๋ณด์
๋๋ค)
h1 ~ # kubeadm join --token [some string] [ip_of_my_server]:6443 --skip-preflight-checks
[kubeadm] WARNING: kubeadm is in beta, please do not use it for production clusters.
[preflight] Skipping pre-flight checks
[discovery] Trying to connect to API Server "192.168.0.254:6443"
[discovery] Created cluster-info discovery client, requesting info from "https://192.168.0.254:6443"
[discovery] Cluster info signature and contents are valid, will use API Server "https://192.168.0.254:6443"
[discovery] Successfully established connection with API Server "192.168.0.254:6443"
[bootstrap] Detected server version: v1.7.3
[bootstrap] The server supports the Certificates API (certificates.k8s.io/v1beta1)
[csr] Created API client to obtain unique certificate for this node, generating keys and certificate signing request
[csr] Received signed certificate from the API server, generating KubeConfig...
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/kubelet.conf"
Node join complete:
* Certificate signing request sent to master and response
received.
* Kubelet informed of new secure connection details.
Run 'kubectl get nodes' on the master to see this machine join.
(ํ์ง๋ง kubectl get nodes
์คํจ)
byungnam2<strong i="17">@ns2</strong> ~ $ kubectl get nodes
Unable to connect to the server: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "kubernetes")
$KUBECONFIG
๊ฐ๋ฆฌํค๋ /etc/kubernetes/kubelet.conf
์์ต๋๊น?
export KUBECONFIG=/etc/kubernetes/kubelet.conf
kubectl get nodes
@liggitt $KUBECONFIG
์ /etc/kubernetes/kubelet.conf
ํ๋ฉด ์ด์ ์๊ฐ ์ด๊ณผ ์ค๋ฅ๊ฐ ๋ฐ์ํฉ๋๋ค.
ns2 ~ # ./kubernetes/kubernetes/server/bin/kubectl get nodes
Error from server (ServerTimeout): the server cannot complete the requested operation at this time, try again later (get nodes)
๊ทธ๋ฆฌ๊ณ ์ด์ ๋ด๊ฐ ์ฐธ์กฐํ๋ ๋งค๋ด์ผ์ ๊ทธ๋ฌํ ์ง์ ์ด ์๊ธฐ ๋๋ฌธ์ $KUBECONFIG
๊ฐ ์ด๋์์ ์๋์ง ์ํฉ๋๋ค.
๋ ธ๋ ๊ฒฐํฉ ๋ช ๋ น์ ์ถ๋ ฅ์์:
[kubeconfig] Wrote KubeConfig file to disk: "/etc/kubernetes/kubelet.conf"
kubeadm์ผ๋ก ํ๋ ์ดํ๋ ๋์ ๋์ผํ ๋ฌธ์ ๊ฐ ๋ฐ์ํ์ต๋๋ค.
๋ช ๋ฒ kubeadm init
๋ฐ kubeadm reset
ํ kubelet์ certificate signed by unknown authority
(kubelet ๋ก๊ทธ์์) ๋๋ฌธ์ apiserver์ ํต์ ํ์ง ๋ชปํฉ๋๋ค. ๋ํ kubeadm init
๋ธ๋ก๋ ์๊ตฌํ ์ฐจ๋จ๋ฉ๋๋ค.
/run/kubernetes/
์๋์ผ๋ก ์ ๊ฑฐํ๋ฉด ๋ชจ๋ ๊ฒ์ด ๋ค์ ๋ํ๋ฉ๋๋ค. kubeadm reset
์คํํ ๋ ์ธ์ฆ์๋ฅผ ์ฒญ์ํ๋ ๋ฐ ๋ฌธ์ ๊ฐ ์์ ์ ์์ต๋๊น?
/area kubeadm
kubeadm 1.8์ ์ฌ์ฉ ์ค์ธ๋ฐ ์ด ๋ฌธ์ ๊ฐ ๊ณ์ ๋ฐ์ํฉ๋๋ค.
ubuntu@ip-172-31-9-157:~$ kubeadm version
kubeadm version: &version.Info{Major:"1", Minor:"8", GitVersion:"v1.8.0", GitCommit:"6e937839ac04a38cac63e6a7a306c5d035fe7b0a", GitTreeState:"clean", BuildDate:"2017-09-28T22:46:41Z", GoVersion:"go1.8.3", Compiler:"gc", Platform:"linux/amd64"}
ubuntu@ip-172-31-9-157:~$
ubuntu@ip-172-31-9-157:~$
ubuntu@ip-172-31-9-157:~$ kubectl get nodes
Unable to connect to the server: x509: certificate signed by unknown authority (possibly because of "crypto/rsa: verification error" while trying to verify candidate authority certificate "kubernetes")
ubuntu@ip-172-31-9-157:~$
ubuntu@ip-172-31-9-157:~$
ubuntu@ip-172-31-9-157:~$
์๋์ผ๋ก /var/run/kubernetes
. kubeadm reset
์คํํ ๋ ์ฒญ์๋์์ต๋๋ค. ์ค์ ๋ฌธ์ ๊ฐ ๋ฌด์์ธ์ง ํ์คํ์ง ์์ต๋๋ค.
์ฃผ์: "ํด๋ฌ์คํฐ ์ฌ์ฉ์ ์์ํ๋ ค๋ฉด (์ผ๋ฐ ์ฌ์ฉ์๋ก) ์คํํด์ผ ํฉ๋๋ค."
[ root@master1 ~]# kubectl ๋
ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์๋ฒ์ ์ฐ๊ฒฐํ ์ ์์: x509: ์ ์ ์๋ ๊ธฐ๊ด์์ ์๋ช
ํ ์ธ์ฆ์(์๋ง๋ ํ๋ณด ๊ธฐ๊ด ์ธ์ฆ์ "kubernetes"๋ฅผ ํ์ธํ๋ ๋์ "crypto/rsa: ํ์ธ ์ค๋ฅ"๋ก ์ธํด)
[ root@master1 ~]# su - regular_user
[ regular_user@master1 ~]$ mkdir -p $HOME/.kube
[ regular_user@master1 ~]$ sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
[ regular_user@master1 ~]$ sudo chown $(id -u):$(id -g) $HOME/.kube/config
[ regular_user@master1 ~]$ kubectl ๋
ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์ด๋ฆ ์ํ ์ญํ ๋์ด ๋ฒ์
master1.virti.corp NotReady ๋ง์คํฐ 6m v1.8.1
master2.virti.corp ์ค๋น ์ ๋จ
@jeffbr13 ๊ฐ์ฌํฉ๋๋ค. ํจ๊ณผ๊ฐ์๋ค.
์ด ํด๊ฒฐ ๋ฐฉ๋ฒ์ผ๋ก ๋ฌธ์๋ฅผ ์ ๋ฐ์ดํธํ์ญ์์ค.
kubeadm reset ํ kubeadm init๋ฅผ ๋ค์ ์คํํ๊ณ ๋ค์์ ๋ฃจํธ๋ก ์คํํ ๊ฒฝ์ฐ ์ ๊ตฌ์ฑ์ ์ป์ผ๋ ค๋ฉด ๋ฃจํธ๋ก ๋ค์ ์คํํด์ผ ํฉ๋๋ค.
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
๊ทธ๋ฐ ๋ค์ ์ฌ์ ํ ๋ฃจํธ๋ก ์คํํ ์ ์์ต๋๋ค.
"sudo kubeadm reset"์ ์คํํ๋ ค๋ ๊ฒฝ์ฐ ์บ์๋ ๋๋ ํ ๋ฆฌ๋ฅผ ์ง์ฐ๋ ค๋ฉด .kube ๋๋ ํ ๋ฆฌ๋ฅผ ์ ๊ฑฐํด์ผ ํฉ๋๋ค.
๊ทธ ํ์ @petersonwsantos๋ฅผ ํ๋ก์ฐํ ์ ์์ต๋๋ค.
์ค, KUBECONFIG๋ฅผ ์ค์ ํ์ผ์ ์ด๋ฆ์ (์: $HOME/.kube/config) ๋ฌด์์ผ๋ก๋ ์ค์ ํ์ญ์์ค.
ํฑํฌ ์น๊ตฌ int true.
๋ค์ ์ค๊ณผ ๊ฐ์ด ๊ตฌ์ฑํ๋ฉด _$kubectl get nodes_๊ฐ ์๋ํฉ๋๋ค.
_root:~/k8s# ๊ณ ์์ด 04-config.sh
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
sudo chmod 777 $HOME/.kube/config
๋ด๋ณด๋ด๊ธฐ KUBECONFIG=/etc/kubernetes/kubelet.conf
๋ด๋ณด๋ด๊ธฐ KUBECONFIG=/home/ubuntu/.kube/config
kubectl ๊ฐ์ ธ์ค๊ธฐ ๋ ธ๋
์ด๋ ๋ค์ค ๋ง์คํฐ ์ค์ ์ด ์๊ณ ๊ฐ ๋ง์คํฐ์์ /etc/kubernetes/pki/ca.*
๋ฅผ ์์ฑํ๊ธฐ ๋๋ฌธ์ผ ์ ์์ต๋๋ค. ์ฒซ ๋ฒ์งธ ๋ง์คํฐ์์ ๋๋จธ์ง ๋ง์คํฐ๋ก ๋ณต์ฌํ๋ ๋์ .
kubernetes ๋ฌธ์์์ ์๋ฃจ์
์ ์ฐพ์์ต๋๋ค.
๋ฌธ์๋ฅผ ๋ฐ๋ฅด๋ ๋์ ์ด ๋ช
๋ น์ ์ฌ์ฉํ์ฌ .kube ๋๋ ํ ๋ฆฌ๋ฅผ ๋ง๋๋ ๊ฒ์ ์์ง ๋ง์ญ์์ค.
mkdir -p $HOME/.kube
์ด ๋ช
๋ น์ด ํ์ํ๊ธฐ ๋๋ฌธ์ .kube ๋๋ ํ ๋ฆฌ๋ฅผ ์ด๋ํฉ๋๋ค.
mv $HOME/.kube $HOME/.kube.bak
https://kubernetes.io/docs/setup/independent/troubleshooting-kubeadm/
์ด ๋ฌธ์ ๊ฐ ์์ ์ ์๋ ๋ค๋ฅธ ์ฌ์ฉ์์ ๊ฒฝ์ฐ /root/.kube ํด๋๊ฐ ์๋ ๊ฒฝ์ฐ ๋ฐฑ์ ์์น๋ก ์ด๋ํ๊ณ ๋ค์ ์๋ํ ์ ์์ต๋๋ค. kubeadm์ sudo๋ก ์คํํ ๊ฒ์ด๊ธฐ ๋๋ฌธ์ ๋ ์ด์ ์ ํจํ์ง ์์ ์บ์๋ ๋ฃจํธ ๋ฒ์ ์ ์ฌ์ฉํ ๊ฐ๋ฅ์ฑ์ด ๋งค์ฐ ๋์ต๋๋ค.
๋ด ๋ฌธ์ ๋ KubeEdge ์์ํ๊ธฐ ๊ฐ์ด๋์์ ์์ฑํ ์ฌ์ฉ์ ์ง์ ์ธ์ฆ์๊ฐ ์๋ค๋ ๊ฒ์ ๋๋ค. ssl๊ณผ kubeedge๋ฅผ ์ด์ง๋ฝํ์ง ์๊ณ ์๋ํ์ต๋๋ค.
์ฃผ์: "ํด๋ฌ์คํฐ ์ฌ์ฉ์ ์์ํ๋ ค๋ฉด (์ผ๋ฐ ์ฌ์ฉ์๋ก) ์คํํด์ผ ํฉ๋๋ค."
[ root@master1 ~]# kubectl ๋ ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์๋ฒ์ ์ฐ๊ฒฐํ ์ ์์: x509: ์ ์ ์๋ ๊ธฐ๊ด์์ ์๋ช ํ ์ธ์ฆ์(์๋ง๋ ํ๋ณด ๊ธฐ๊ด ์ธ์ฆ์ "kubernetes"๋ฅผ ํ์ธํ๋ ๋์ "crypto/rsa: ํ์ธ ์ค๋ฅ"๋ก ์ธํด)[ root@master1 ~]# su - regular_user
[ regular_user@master1 ~]$ mkdir -p $HOME/.kube
[ regular_user@master1 ~]$ sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
[ regular_user@master1 ~]$ sudo chown $(id -u):$(id -g) $HOME/.kube/config
์ด๊ฒ์ ์๋ํฉ๋๋ค. ๋ณ๊ฒฝ๋ ์ดํ๋ก KUBECONFIG๋ฅผ ๋ค์ ์ค์ ํด์ผ ํ๋ค๋ ์ ์ ์ ์ธํ๊ณ
๋ด๋ณด๋ด๊ธฐ KUBECONFIG=$HOME/.kube/config
[ regular_user@master1 ~]$ kubectl ๋ ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์ด๋ฆ ์ํ ์ญํ ๋์ด ๋ฒ์
master1.virti.corp NotReady ๋ง์คํฐ 6m v1.8.1
master2.virti.corp NotReady 4m v1.8.1
$KUBECONFIG
๊ฐ๋ฆฌํค๋/etc/kubernetes/kubelet.conf
์์ต๋๊น?export KUBECONFIG=/etc/kubernetes/kubelet.conf kubectl get nodes
๊ทธ๊ฒ์ ๋๋ฅผ ์ํด ์๋ํฉ๋๋ค. ๊ฐ์ฌํฉ๋๋ค.
๋ด๋ณด๋ด๊ธฐ KUBECONFIG=/etc/kubernetes/kubelet.conf
kubectl ๊ฐ์ ธ์ค๊ธฐ ๋
ธ๋
๋์๊ฒ์ ์ผ์ด๋ค
์ฃผ์: "ํด๋ฌ์คํฐ ์ฌ์ฉ์ ์์ํ๋ ค๋ฉด (์ผ๋ฐ ์ฌ์ฉ์๋ก) ์คํํด์ผ ํฉ๋๋ค."
[ root@master1 ~]# kubectl ๋ ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์๋ฒ์ ์ฐ๊ฒฐํ ์ ์์: x509: ์ ์ ์๋ ๊ธฐ๊ด์์ ์๋ช ํ ์ธ์ฆ์(์๋ง๋ ํ๋ณด ๊ธฐ๊ด ์ธ์ฆ์ "kubernetes"๋ฅผ ํ์ธํ๋ ๋์ "crypto/rsa: ํ์ธ ์ค๋ฅ"๋ก ์ธํด)[ root@master1 ~]# su - regular_user
[ regular_user@master1 ~]$ mkdir -p $HOME/.kube
[ regular_user@master1 ~]$ sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
[ regular_user@master1 ~]$ sudo chown $(id -u):$(id -g) $HOME/.kube/config[ regular_user@master1 ~]$ kubectl ๋ ธ๋ ๊ฐ์ ธ์ค๊ธฐ
์ด๋ฆ ์ํ ์ญํ ๋์ด ๋ฒ์
master1.virti.corp NotReady ๋ง์คํฐ 6m v1.8.1
master2.virti.corp NotReady 4m v1.8.1
์ด๊ฒ์ ํจ๊ณผ๊ฐ ์์๋ค!
kubeadm init
๋ค์์ $HOME/.kube ํด๋๋ฅผ ์ ๊ฑฐํ๊ณ ์๋ก ๋ง๋ค์ด์ผ ํฉ๋๋ค.
mkdir -p $HOME/.kube
sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config
sudo chown $(id -u):$(id -g) $HOME/.kube/config
๊ฐ์ฅ ์ ์ฉํ ๋๊ธ
$KUBECONFIG
๊ฐ๋ฆฌํค๋/etc/kubernetes/kubelet.conf
์์ต๋๊น?