kube-rsa

command module
v0.0.0-...-be773f4 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 27, 2016 License: Apache-2.0 Imports: 13 Imported by: 0

README

kube-rsa

kube-rsa generates self-signed TLS certificates for Kubernetes. kube-rsa does not manage TLS certificates and should only be used for testing and basic bootstrapping.

The generated certs can be used to secure connections to the Kubernetes API server and generate service account tokens.

kube-rsa should not be used to manage client TLS certificates for authentication. Consider using a supported authentication method to limit access to the Kubernetes API server over a secure connection.

Usage

The following command will generate TLS certificates for serving secure connections from the Kubernetes API server and managing Kubernetes service account tokens.

$ kube-rsa --host=104.197.228.232,10.240.0.3

wrote ca.pem
wrote ca-key.pem
wrote apiserver.pem
wrote apiserver-key.pem
wrote service-account.pem
wrote service-account-key.pem

The first host entry set via the --host flag will be used as the CN, otherwise the CN will be set to 127.0.0.1.

Kubernetes Configuration Guide

Kubernetes API Server
--service-account-key-file="service-account.pem"
--tls-cert-file="apiserver.pem"
--tls-private-key-file="apiserver-key.pem"
Kubernetes Controller Manager
--service-account-private-key-file="service-account-key.pem"

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.