kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update security.md

This commit is contained in:
AdamDang 2018-10-14 12:03:38 +08:00 committed by GitHub
parent c57c71251e
commit 921c7f2ca3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docs/security.md
View File

@ -6,7 +6,7 @@ SSH is allowed to the masters and the nodes, by default from anywhere.
To change the CIDR allowed to access SSH (and HTTPS), set AdminAccess on the cluster spec. To change the CIDR allowed to access SSH (and HTTPS), set AdminAccess on the cluster spec.
When using the default images, the SSH username will be `admin`, and the SSH private key is be When using the default images, the SSH username will be `admin`, and the SSH private key will be
the private key corresponding to the public key in `kops get secrets --type sshpublickey admin`. When the private key corresponding to the public key in `kops get secrets --type sshpublickey admin`. When
creating a new cluster, the SSH public key can be specified with the `--ssh-public-key` option, and it creating a new cluster, the SSH public key can be specified with the `--ssh-public-key` option, and it
defaults to `~/.ssh/id_rsa.pub`. defaults to `~/.ssh/id_rsa.pub`.
@ -51,7 +51,7 @@ spec:
anonymousAuth: false anonymousAuth: false
``` ```
**Note** on a existing cluster with 'anonymousAuth' unset you would need to first roll out the masters and then update the node instance groups. **Note** on an existing cluster with 'anonymousAuth' unset you would need to first roll out the masters and then update the node instance groups.
### API Bearer Token ### API Bearer Token