1、在Master节点上执行
cat /root/.kube/config
得到以下内容:
apiVersion: v1
clusters:
- cluster:
certificate-authority-data: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUN5RENDQWJDZ0F3SUJBZ0lCQURBTkJna3Foa2l......省略......RkJLdlU4QnBpMTJicz0KLS0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQo=
server: https://172.17.221.218:6443
name: kubernetes
contexts:
- context:
cluster: kubernetes
user: kubernetes-admin
name: kubernetes-admin@kubernetes
current-context: kubernetes-admin@kubernetes
kind: Config
preferences: {}
users:
- name: kubernetes-admin
user:
client-certificate-data: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUM4akNDQWRxZ0F3SUJBZ0lJT2NDUk4zQ2phQlF......省略......kMHpyd1JmRTdVZz0KLS0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQo=
client-key-data: LS0tLS1CRUdJTiBSU0EgUFJJVkFURSBLRVktLS0tLQpNSUlFb2dJQkFBS0NBUUVBMjVBOWpYaVR3ZSt......省略......M9Ci0tLS0tRU5EIFJTQSBQUklWQVRFIEtFWS0tLS0tCg==
制作jenkins登录kubernetes的证书:
#将certificate-authority-data的内容保存到kube-ca.crt
echo LS0tLS1CRUdJTiBDRVJUSUZJQ0FURSA0RV......tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQo= | base64 -d > ~/kube-cert/kube-ca.crt
#将client-certificate-data的内容保存到kube-client.crt
echo LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS......0tLS1FTkQgQ0VSVElGSUNBVEUtLS0tLQo= | base64 -d > ~/kube-cert/kube-client.crt
#将client-key-data的内容保存到kube-client.key
echo LS0tLS1CRUdJTiBSU0EgUFJJVkFURSBLR......QSBQUklWQVRFIEtFWS0tLS0tCg== | base64 -d > ~/kube-cert/kube-client.key
#创建证书kube-cert.pfx,kube-cert.pfx证书要上传到jenkins,创建证书需要设置密码,密码在jenkins要用到!
openssl pkcs12 -export -out ~/kube-cert/kube-cert.pfx -inkey ~/kube-cert/kube-client.key -in ~/kube-cert/kube-client.crt -certfile ~/kube-cert/kube-ca.crt
2、按图填写对应内容。
image.png
3、添加凭据。
image.png
完成后点测试连接,应该会出现连接成功
image.png
