Generates the client apiserver uses to access etcd
Renews the client apiserver uses to access etcd, and saves them into apiserver-etcd-client.cert and apiserver-etcd-client.key files.
Extra attributes such as SANs will be based on the existing certificates, there is no need to resupply them.
kubeadm alpha certs renew apiserver-etcd-client [flags]
|--cert-dir string Default: "/etc/kubernetes/pki"|
|The path where to save the certificates|
|Path to a kubeadm configuration file.|
|The path to output the CSRs and private keys to|
|Create CSRs instead of generating certificates|
|help for apiserver-etcd-client|
|--kubeconfig string Default: "/etc/kubernetes/admin.conf"|
|The kubeconfig file to use when talking to the cluster. If the flag is not set, a set of standard locations are searched for an existing KubeConfig file.|
|Use the Kubernetes certificate API to renew certificates|
|[EXPERIMENTAL] The path to the 'real' host root filesystem.|
Was this page helpful?
Thanks for the feedback. If you have a specific, answerable question about how to use Kubernetes, ask it on Stack Overflow. Open an issue in the GitHub repo if you want to report a problem or suggest an improvement.