Difference between revisions of "~/.kube/config"
Jump to navigation
Jump to search
Line 61: | Line 61: | ||
* https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html | * https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html | ||
* <code>[[kubectl config]]</code> | * <code>[[kubectl config]]</code> | ||
+ | * <code>[[kubectl konfig merge]]</code> | ||
* <code>[[kubectl get nodes]]</code>, <code>[[kubectl get svc]]</code> | * <code>[[kubectl get nodes]]</code>, <code>[[kubectl get svc]]</code> | ||
* [[Terraform: Kubernetes provider]], [[Terraform helm provider]] | * [[Terraform: Kubernetes provider]], [[Terraform helm provider]] |
Revision as of 10:34, 21 September 2023
~/.kube/config
apiVersion: v1 clusters: null contexts: null current-context: "" kind: Config preferences: {} users: null
Configure
- AWS:
aws eks update-kubeconfig --name my-eks-cluster-name
- GCP:
gcloud container clusters get-credentials MyClusterName
Examples
apiVersion: v1 clusters: - cluster: certificate-authority-data: LS0tLS1CRUdJTiDATAREMOVEDCg== server: https://00AXXXXXXXXXX1B.gr7.us-east-2.eks.amazonaws.com name: arn:aws:eks:us-east-2:123455:cluster/education-eks-Ry318DCv contexts: - context: cluster: arn:aws:eks:us-east-2:123456:cluster/education-eks-Ry318DCv user: arn:aws:eks:us-east-2:123455:cluster/education-eks-Ry318DCv name: arn:aws:eks:us-east-2:123456:cluster/education-eks-Ry318DCv current-context: arn:aws:eks:us-east-2:123456:cluster/education-eks-Ry318DCv kind: Config
kind: Config preferences: {} users: - name: arn:aws:eks:us-east-2:123456:cluster/education-eks-Ry318DCv [[user:]] exec: apiVersion: client.authentication.k8s.io/v1alpha1 args: - --region - us-east-2 - eks - get-token - --cluster-name - education-eks-Ry318DCv command: aws env: - name: AWS_PROFILE value: your_aws_profile
Example
- name: your-cluster-name user: auth-provider: config: access-token: ya29.a0AVA9y1sXXXXC-z107gauQ0174 cmd-args: config config-helper --format=json cmd-path: /Users/my-user/brew/Caskroom/google-cloud-sdk/latest/google-cloud-sdk/bin/gcloud expiry: "2022-08-25T15:03:28Z" expiry-key: '{.credential.token_expiry}' token-key: '{.credential.access_token}' name: your-name
Errors
Error: unable to describe cluster control plane: AccessDeniedException: User: arn:aws:iam::0987654321:user/YOUR_USER is not authorized to perform: eks:DescribeCluster on resource: arn:aws:eks:xx-east-2:0987654321:cluster/my-eks-cluster-name with an explicit deny
kubectl get pods error: exec plugin: invalid apiVersion "client.authentication.k8s.io/v1alpha1"
aws --version aws-cli/1.18.147 .../...
error: You must be logged in to the server (Unauthorized)
Related
- https://docs.aws.amazon.com/eks/latest/userguide/create-kubeconfig.html
kubectl config
kubectl konfig merge
kubectl get nodes
,kubectl get svc
- Terraform: Kubernetes provider, Terraform helm provider
aws eks get-token
- Connect to K8s cluster
- AWS:
aws eks update-kubeconfig --name my-eks-cluster-name
- GCP:
gcloud container clusters get-credentials MyClusterName
- AWS:
kubectl config rename-context
kubectl auth
See also
kubectl config
[view | get-contexts | current-context | get-clusters | set-context | set-credentials ], ~/.kube/config, kubectl config --help
,kubectx
, Kubernetes contexts,KUBECONFIG, kubectl --kubeconfig
- Terraform EKS, Terraform EKS module, Deploy EKS cluster using Terraform, Terraform EKS apply output,
terraform show, ~/.kube/config
,aws_eks_cluster, aws_eks_addon, module.eks_managed_node_group, eks-cluster.tf, node_groups, worker_groups
Advertising: