This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
soft:kubernetes [2019/08/07 07:59] phil |
soft:kubernetes [2019/12/15 17:11] (current) phil |
||
---|---|---|---|
Line 40: | Line 40: | ||
</ | </ | ||
- | ==== Join worker nodes with kubeadm ==== | + | ===== Join worker nodes with kubeadm |
TODO | TODO | ||
- | ==== Upgrade a cluster with kubeadm ==== | + | ===== Upgrade a cluster with kubeadm |
Read upgrade guide carrefully before upgrading ! Exemple of such notes: https:// | Read upgrade guide carrefully before upgrading ! Exemple of such notes: https:// | ||
Line 70: | Line 70: | ||
sudo apt-mark hold kubectl kubelet kubeadm | sudo apt-mark hold kubectl kubelet kubeadm | ||
</ | </ | ||
+ | |||
+ | ===== Modify cluster configuration ===== | ||
+ | |||
+ | kubeadm write configuration in a configmap named // | ||
+ | |||
+ | Edit with: | ||
+ | |||
+ | < | ||
+ | kubectl -n kube-system edit configmap kubeadm-config | ||
+ | </ | ||
+ | |||
+ | Parameters for api-server, controllers etc, can be added to the // | ||
+ | |||
+ | < | ||
+ | kubeadm upgrade node | ||
+ | </ | ||
+ | |||
+ | This will write new static manifests to / | ||
+ | |||
+ | Example for securing a 1.16 cluster: | ||
+ | |||
+ | < | ||
+ | ClusterConfiguration: | ||
+ | apiServer: | ||
+ | extraArgs: | ||
+ | authorization-mode: | ||
+ | profiling: " | ||
+ | enable-admission-plugins: | ||
+ | </ | ||
+ |