VMware/TKGs: Difference between revisions
Jump to navigation
Jump to search
(Created page with "= TKGs = == Trust CAs == kubectl edit Tkgserviceconfigurations tkg-service-configuration spec: defaultCNI: antrea trust: additionalTrustedCAs: - data: name: == SSH to Worker Nodes == https://docs.vmware.com/en/VMware-vSphere/7.0/vmware-vsphere-with-tanzu/GUID-37DC1DF2-119B-4E9E-8CA6-C194F39DDEDA.html https://williamlam.com/2020/10/how-to-ssh-to-tanzu-kubernetes-grid-tkg-cluster-in-vsphere-with-tanzu.html") |
|||
| (One intermediate revision by the same user not shown) | |||
| Line 1: | Line 1: | ||
= TKGs = | = TKGs = | ||
== kapp-controller trust harbor cert == | |||
export CLUSTER_CONTEXT="tkgs.dersllc.com" | |||
export CLUSTER_NAME="tmc-cluster" | |||
export CLUSTER_NS="tmc" | |||
curl --insecure https://ders-gitlab.dersllc.com/ders/ders-proxy/-/raw/master/STAR_dersllc_com.crt > /data/ders-star.crt | |||
kubectl --context ${CLUSTER_CONTEXT} get KappControllerConfig -n ${CLUSTER_NS} ${CLUSTER_NAME}-kapp-controller-package -o yaml > ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package.yaml | |||
yq eval '.spec.kappController.config.caCerts = "'"$(< /data/ders-star.crt)"'"' ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package.yaml > ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package-fixed.yaml | |||
kubectl --context ${CLUSTER_CONTEXT} apply -f ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package-fixed.yaml | |||
== Trust CAs == | == Trust CAs == | ||
kubectl edit Tkgserviceconfigurations tkg-service-configuration | kubectl edit Tkgserviceconfigurations tkg-service-configuration | ||
Latest revision as of 17:59, 14 August 2024
TKGs
kapp-controller trust harbor cert
export CLUSTER_CONTEXT="tkgs.dersllc.com" export CLUSTER_NAME="tmc-cluster" export CLUSTER_NS="tmc" curl --insecure https://ders-gitlab.dersllc.com/ders/ders-proxy/-/raw/master/STAR_dersllc_com.crt > /data/ders-star.crt kubectl --context ${CLUSTER_CONTEXT} get KappControllerConfig -n ${CLUSTER_NS} ${CLUSTER_NAME}-kapp-controller-package -o yaml > ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package.yaml yq eval '.spec.kappController.config.caCerts = "'"$(< /data/ders-star.crt)"'"' ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package.yaml > ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package-fixed.yaml kubectl --context ${CLUSTER_CONTEXT} apply -f ${CLUSTER_NS}-${CLUSTER_NAME}-kapp-controller-package-fixed.yaml
Trust CAs
kubectl edit Tkgserviceconfigurations tkg-service-configuration
spec:
defaultCNI: antrea
trust:
additionalTrustedCAs:
- data:
name:
SSH to Worker Nodes
https://docs.vmware.com/en/VMware-vSphere/7.0/vmware-vsphere-with-tanzu/GUID-37DC1DF2-119B-4E9E-8CA6-C194F39DDEDA.html https://williamlam.com/2020/10/how-to-ssh-to-tanzu-kubernetes-grid-tkg-cluster-in-vsphere-with-tanzu.html