You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
-`kubectl exec`: This is the kubectl command used to execute a command inside a running pod. It allows you to run commands within the container of a pod.
69
-
-`--stdin`: This flag allows you to send input (stdin) to the command you are running inside the pod.
70
-
-`--tty`: This flag allocates a TTY (terminal) for the command, making it behave like you are interacting with a terminal session.
69
+
-`--stdin`: This flag allows you to send input (stdin) to the command you are running inside the pod.
70
+
-`--tty`: This flag allocates a TTY (terminal) for the command, making it behave as though you're interacting with a terminal session.
71
71
-`<etcd pod name>`: to find the etcd pod name, run the following command:
72
72
73
73
```azurecli
74
74
kubectl get pods -n kube-system | findstr etcd-moc
75
75
```
76
76
77
-
-`-n kube-system`: This flag specifies the namespace where the pod is located. kube-system is the default namespace used by Kubernetes for system components, such as etcd and other control plane services.
77
+
-`-n kube-system`: Specifies the namespace where the pod is located. **kube-system** is the default namespace used by Kubernetes for system components, such as etcd and other control plane services.
78
78
-`--etcdctl`: Reads the secret from etcd. Additional fields are used for authentication prior to getting access to etcd.
79
79
80
80
The following fields are returned in the command output:
81
81
82
82
```output
83
83
"ClusterID" : <cluster id>
84
-
85
84
"MemberID" : <member id>
86
-
87
-
"Revision" : <revision number>
88
-
85
+
"Revision" : <revision number>
89
86
"RaftTerm" : 2
90
-
91
87
"Key" : <path to the key>
92
-
93
-
"CreateRevision" : < revision number at the time the key was created>
94
-
95
-
"ModRevision" : <revision number at the time the key was modified >
96
-
97
-
"Version" : <The version of the key-value pair in etcd >
98
-
88
+
"CreateRevision" : <revision number at the time the key was created>
89
+
"ModRevision" : <revision number at the time the key was modified>
90
+
"Version" : <version of the key-value pair in etcd>
"Count" : <The number of key-value pairs returned>
92
+
"Lease" : <lease associated with the secret>
93
+
"More" : <indicates if there are more results>
94
+
"Count" : <number of key-value pairs returned>
106
95
```
107
96
108
97
After you run the command, examine the `Value` field in the output in the terminal window. This output shows the value stored in etcd secret store for this key, which is the encrypted value of the secret. The value is encrypted using a KMS plugin. The `k8s:enc:kms:v1:` prefix indicates that Kubernetes is using the KMS v1 plugin to store the secret in an encrypted format.
0 commit comments