ashish-amarnath
commented
4 years ago Where would the custom certificates dir be supplied for controlplane joins? CACertPath points only to the ca cert.
Closed chuckha closed 4 years ago
ashish-amarnath
commented
4 years ago Where would the custom certificates dir be supplied for controlplane joins? CACertPath points only to the ca cert.
chuckha
commented
4 years ago /assign /lifecycle active
chuckha
commented
4 years ago @ashish-amarnath to answer your question fully: This only applies to control plane nodes, not to worker nodes. Worker nodes only need the ca.crt file to work whereas the control plane needs the entire set of certs
/kind bug
What steps did you take and what happened: Kubeadm allows for custom CertificatesDir, but we hardcode it to
/etc/kubernetes/pki.What did you expect to happen: I expect CABPK to respect my kubeadm config.
this is not a super common feature from my experience in kubeadm but we should support it as people will expect this to work
/priority important-longterm /milestone Next