CKA &. CKAD/Security15 TLS in Kubernetes Open SSL을 통한 인증서 Pair 생성 ㅁ Certificate Authority (CA) ㅇ Generate Keys (ca.key) $ openssl genrsa -out ca.key 2048 ca.key ㅇ Certificate Signing Request $ openssl req -new -key ca.key -subj "/CN=KUBERNETES-CA" -out ca.csr ca.csr ㅇ Sign Certificates $ openssl x509 -req -in ca.csr -signkey ca.key -out ca.crt ca.crt ㅁ ADMIN USER ㅇ Generate Keys $ openssl genrsa -out admin.key 2048 admin.key ㅇ Certific.. 2021. 3. 29. TLS A certificate is used to guarantee trust between two parties during a transaction Scenario we're going to refer to the public lock as public key going forward now that you have got the idea that the ssh-keygen command we used earlier create a pair of keys for SSH purposes. so the format is bit different here we use the openssl command to generate a private and public key pair. and that's how the.. 2021. 3. 28. Authentication Focusing on securing access to the communicties cluster with authentication mechanisms kubectl create serviceaccount sa1 kubectl get serviceaccount kube-apiserver.service ExecStart=/usr/local/bin/kube-apiserver \\ --advertise-address=${INTERNAL_IP} \\ --allow-privileged=true \\ --apiserver-count=3 \\ --authroization-mode=Node,RBAC \\ --bind-address=0.0.0.0 \\ --enable-swagger-ui=true \\ --etcd-s.. 2021. 3. 28. 이전 1 2 3 다음
