728x90
# Authentication
- kube-apiserver가 인증 체크
. static password file, static token file, certificates, identity Services
# Auth Mechanism
- Follow the below instructions to configure basic authentication in a kubeadm setup.
Create a file with user details locally at /tmp/users/user-details.csv
Edit the kube-apiserver static pod configured by kubeadm to pass in the user details.
The file is located at /etc/kubernetes/manifests/kube-apiserver.yaml
Modify the kube-apiserver startup options to include the basic-auth file
Create the necessary roles and role bindings for these users
Once created, you may authenticate into the kube-api server using the users credentials
curl -v -k https://localhost:6443/api/v1/pods -u "user1:password123"
반응형
'IT Tech > Cloud Native' 카테고리의 다른 글
| [CKA] KubeConfig (0) | 2022.03.17 |
|---|---|
| [CKA] TLS (0) | 2022.03.17 |
| [CKA] Software Version (0) | 2022.03.15 |
| [CKA] Cluster Maintenance (0) | 2022.03.15 |
| [CKA] Init Containers (0) | 2022.03.15 |