k8s的node啟動kubelet后再master端獲取不到
node的日志/var/log/messages報錯如下
failed to ensure node lease exists, will retry in 7s, error: leases.coordination.k8s.io "172.16.20.227" is forbidden: User "system:node:172.16.20.228" cannot get resource "leases" in API group "coordination.k8s.io" in the namespace "kube-node-lease": can only access node lease with the same name as the requesting node
原因:其他node復制過來的配置文件包含證書/opt/kubernetes/ssl/導致重復了
需要刪除該目錄下證書重啟kubelet重新生成新的node證書
如果是修改了node主機的IP,需要修改kubelet 配置信息,重啟kubelet並且在master刪除原csr以及node