一篇文章带给你Zabbix 5.4 alpha版本体验
725
2022-11-03
《蹲坑学kubernetes》之9-7:部署kubectl
kubectl是Kubernetes集群的命令行工具,通过kubectl能够对集群本身进行管理,并能够在集群上进行容器化应用的安装部署。
按照如下拓扑图部署:
一、设置命令行自动补全功能
[root@k8s-master ~]# source/usr/share/bash-completion/bash_completion[root@k8s-master ~]# source <(kubectlcompletion bash)
二、部署kubectl
[root@k8s-master ~]# cd/usr/src/kubernetes/server/bin/[root@k8s-master bin]# cp kubectl kubelet/usr/local/kubernetes/bin/
1、创建管理员证书
(1)创建admin签名文件
[root@k8s-master ~]# cd/usr/local/kubernetes/ssl/[root@k8s-master ssl]# vim admin-csr.json添加:{ "CN": "admin", "hosts": [], "key": { "algo": "rsa", "size": 2048 }, "names": [ { "C": "CN", "L": "BeiJing", "ST":"BeiJing", "O":"system:masters", "OU": "System" } ]}
(2)生成证书和私钥
[root@k8s-master ssl]# cfssl gencert-ca=/usr/local/kubernetes/ssl/ca.pem-ca-key=/usr/local/kubernetes/ssl/ca-key.pem-config=/usr/local/kubernetes/ssl/ca-config.json -profile=kubernetes/usr/local/kubernetes/ssl/admin-csr.json | cfssljson -bare admin
2、创建admin.kubeconfig配置文件
[root@k8s-master ~]# vim/usr/local/kubernetes/conf/env-admin.kubeconfig.sh添加:# 设置集群参数kubectl configset-cluster kubernetes \ --certificate-authority=/usr/local/kubernetes/ssl/ca.pem \ --embed-certs=true \ --server=https://192.168.1.3:6443 \ --kubeconfig=/usr/local/kubernetes/conf/admin.kubeconfig# 设置客户端认证参数kubectl configset-credentials admin \ --client-certificate=/usr/local/kubernetes/ssl/admin.pem \ --client-key=/usr/local/kubernetes/ssl/admin-key.pem \ --embed-certs=true \ --kubeconfig=/usr/local/kubernetes/conf/admin.kubeconfig# 设置上下文参数kubectl configset-context default \ --cluster=kubernetes \ --user=admin \ --kubeconfig=/usr/local/kubernetes/conf/admin.kubeconfig#设置默认上下文kubectl configuse-context default \ --kubeconfig=/usr/local/kubernetes/conf/admin.kubeconfig [root@k8s-master ~]# chmod +x/usr/local/kubernetes/conf/env-admin.kubeconfig.sh[root@k8s-master ~]#/usr/local/kubernetes/conf/env-admin.kubeconfig.sh
3、配置config文件路径
[root@k8s-master ~]# mkdir -p $HOME/.kube[root@k8s-master ~]# cp -i/usr/local/kubernetes/conf/admin.kubeconfig $HOME/.kube/config[root@k8s-master ~]# chown $(id -u):$(id-g) $HOME/.kube/config
4、kubectl命令的操作使用
[root@k8s-master ~]# kubectl get cs
[root@k8s-master ~]# kubectl get cs,nodes
[root@k8s-master ~]# kubectl get ns
发表评论
暂时没有评论,来抢沙发吧~