From a06de688fc85a6c51d932309c8cd986dd3d68e0b Mon Sep 17 00:00:00 2001 From: Martin Dietze Date: Tue, 20 Feb 2018 09:14:38 +0100 Subject: [PATCH] Two bug fixes to HA guide for kubeadm: (#7451) - In the provided configuration file for `kubeadm init` the value for `apiserver-count` needs to be put in quotes. - In addition to /etc/kubernetes/pki/ca.* also /etc/kubernetes/pki/sa.* need to be copied to the additional masters. See [this comment](https://github.com/kubernetes/kubeadm/issues/546#issuecomment-350241024) by @petergardfjall for details. --- docs/setup/independent/high-availability.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/setup/independent/high-availability.md b/docs/setup/independent/high-availability.md index 3f25a8886a..9985e13c3a 100644 --- a/docs/setup/independent/high-availability.md +++ b/docs/setup/independent/high-availability.md @@ -434,7 +434,7 @@ Only follow this step if your etcd is hosted on dedicated nodes (**Option 1**). apiServerCertSANs: - apiServerExtraArgs: - apiserver-count: 3 + apiserver-count: "3" EOF ``` @@ -468,7 +468,7 @@ Before running kubeadm on the other masters, you need to first copy the K8s CA c #### Option 2: Copy paste -1. Copy the contents of `/etc/kubernetes/pki/ca.crt` and `/etc/kubernetes/pki/ca.key` and create these files manually on `master1` and `master2`. +1. Copy the contents of `/etc/kubernetes/pki/ca.crt`, `/etc/kubernetes/pki/ca.key`, `/etc/kubernetes/pki/sa.key` and `/etc/kubernetes/pki/sa.pub` and create these files manually on `master1` and `master2`. When this is done, you can follow the [previous step](#kubeadm-init-master0) to install the control plane with kubeadm.