styk-tv
commented
7 years ago would be appropriate to move current /opt/backup/certs to /opt/backup/certs/ssl but that would require change of ALL references. and there are quite a few
Open styk-tv opened 7 years ago
styk-tv
commented
7 years ago would be appropriate to move current /opt/backup/certs to /opt/backup/certs/ssl but that would require change of ALL references. and there are quite a few
We will use S3 private bucket for Core/Cluster cert distribution.
1) generate new key as jenkins user
2) copy script to /opt/backup/certs/ssh (public only) id_rsa.pub
3) copy kubernetes certs to /opt/backup/certs/kubernetes
4) then on Ingress instance in k8s-install.sh script copy from s3 back to /opt/backup/certs/ssh and /opt/backup/certs/kubernetes folders only
5) append (not replace) public ssh key from /opt/backup/certs/ssh/id_rsa.pub to /users/ubuntu/.ssh/authorized_keys (make sure permissions and ownership stays the same)
you should now be able to continue with kubernetes node to join master as well as have ability to connect to node from Core.