kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6575 from flands/auth 

Update docs on authentication
This commit is contained in:
Kubernetes Prow Robot 2019-03-14 00:00:35 -07:00 committed by GitHub
parent 9a3bbb60fd 221a36859f
commit 0bab6d9693
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
docs/authentication.md
View File

@ -34,7 +34,7 @@ spec:
## AWS IAM Authenticator
If you want to turn on AWS IAM Authenticator, you can add this block
to your cluster running Kubernetes 1.10 or newer:
to your cluster running Kubernetes 1.10 or newer via `kops edit cluster ${CLUSTER_NAME}`:
```
authentication:
@ -55,7 +55,8 @@ spec:
rbac: {}
```
Once the cluster is up, or after you've performed a rolling update to an existing cluster with `kops rolling-update cluster ${CLUSTER_NAME} --instance-group-roles=Master --force --yes`, you will need to create the AWS IAM authenticator
Once done you need to run `kops update cluster ${CLUSTER_NAME} --yes; kops rolling-update cluster ${CLUSTER_NAME} --instance-group-roles=Master --cloudonly --force --yes`.
Next, you will need to create the AWS IAM authenticator
config as a config map. (This can also be done when boostrapping a cluster using addons)
For more details on AWS IAM authenticator please visit [kubernetes-sigs/aws-iam-authenticator](https://github.com/kubernetes-sigs/aws-iam-authenticator)
@ -112,4 +113,4 @@ data:
username: alice
groups:
- system:masters
```
```