TLS Bootstrapping Worker node

Yiannis.Marougkas:
vagrant@worker-2:~$ kubectl create -f bootstrap-token-07401b.yaml
The connection to the server localhost:8080 was refused - did you specify the right host or port?

KK:
Could you please paste the yaml here

Yiannis.Marougkas:
cat bootstrap-token-07401b.yaml
apiVersion: v1
kind: Secret
metadata:

Name MUST be of form “bootstrap-token-<token id>”

name: bootstrap-token-07401b
namespace: kube-system

Type MUST be ‘http://bootstrap.kubernetes.io/token|bootstrap.kubernetes.io/token

type: http://bootstrap.kubernetes.io/token|bootstrap.kubernetes.io/token
stringData:

Human readable description. Optional.

description: “The default bootstrap token generated by ‘kubeadm init’.”

Token ID and secret. Required.

token-id: 07401b
token-secret: f395accd246ae52d

Expiration. Optional.

expiration: 2021-03-10T03:22:11Z

Allowed usages.

usage-bootstrap-authentication: “true”
usage-bootstrap-signing: “true”

Extra groups to authenticate the token as. Must start with “system:bootstrappers:”

auth-extra-groups: system:bootstrappers:worker

KK:
On master node: Run “kubectl get componentstatuses --kubeconfig admin.kubeconfig”

Yiannis.Marougkas:
vagrant@master-1:~ kubectl get componentstatuses --kubeconfig admin.kubeconfig NAME STATUS MESSAGE ERROR controller-manager Healthy ok scheduler Healthy ok etcd-1 Healthy {"health":"true"} etcd-0 Healthy {"health":"true"} vagrant@master-1:~

KK:
kubectl get pods -n kube-system?

Yiannis.Marougkas:
nope

Yiannis.Marougkas:
vagrant@master-1:~ kubectl get pods -n kube-system No resources found. vagrant@master-1:~

Yiannis.Marougkas:
it seems that the network should be created first

Yiannis.Marougkas:
and the to configure the bootstrap

Yiannis.Marougkas:
and then …