創建token授權角色的時候,死活執行不成。
[root@m1 logs]# kubectl create clusterrolebinding kubelet-bootstrap --clusterrole=system:node-bootstrapper --user=kubelet-bootstrap
error: failed to create clusterrolebinding: Post "https://192.168.188.202:6443/apis/rbac.authorization.k8s.io/v1/clusterrolebindings?fieldManager=kubectl-create": x509: certificate signed by unknown authority
通過其他的命令查詢資源,比如 kubectl get csr 也是 類似錯誤,查詢各種資料無果,最后
參考這根文章完美結局
https://blog.csdn.net/woay2008/article/details/93250137
我的原意是之前這個虛擬機用kubeadm安裝了一遍,雖然reset環境了,有個~/.kube文件夾沒有被刪除,里面有個config文件
暫時不知道什么原意,刪除這個文件夾再進行授權和查詢就可以了。
[root@m1 ~]# rm -rf .kube/
[root@m1 ~]# kubectl create clusterrolebinding kubelet-bootstrap --clusterrole=system:node-bootstrapper --user=kubelet-bootstrap
clusterrolebinding.rbac.authorization.k8s.io/kubelet-bootstrap created
[root@m1 ~]# kubectl get cs
Warning: v1 ComponentStatus is deprecated in v1.19+
NAME STATUS MESSAGE ERROR
scheduler Unhealthy Get "http://127.0.0.1:10251/healthz": dial tcp 127.0.0.1:10251: connect: connection refused
controller-manager Unhealthy Get "http://127.0.0.1:10252/healthz": dial tcp 127.0.0.1:10252: connect: connection refused
etcd-1 Healthy {"health":"true"}
etcd-2 Healthy {"health":"true"}
etcd-0 Healthy {"health":"true"}