@@ -196,7 +196,7 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具;在这
196196 如果您还没有 CA,则在 `$HOST0`(您为 kubeadm 生成配置文件的位置)上运行此命令。
197197
198198 ```
199- kubeadm alpha phase certs etcd-ca
199+ kubeadm init alpha phase certs etcd-ca
200200 ```
201201
202202 <!--
@@ -214,25 +214,25 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具;在这
214214
215215 <!--
216216 ```sh
217- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST2}/kubeadmcfg.yaml
218- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST2}/kubeadmcfg.yaml
219- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
220- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
217+ kubeadm init phase certs etcd-server --config=/tmp/${HOST2}/kubeadmcfg.yaml
218+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST2}/kubeadmcfg.yaml
219+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
220+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
221221 cp -R /etc/kubernetes/pki /tmp/${HOST2}/
222222 # cleanup non-reusable certificates
223223 find /etc/kubernetes/pki -not -name ca.crt -not -name ca.key -type f -delete
224224
225- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST1}/kubeadmcfg.yaml
226- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST1}/kubeadmcfg.yaml
227- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
228- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
225+ kubeadm init phase certs etcd-server --config=/tmp/${HOST1}/kubeadmcfg.yaml
226+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST1}/kubeadmcfg.yaml
227+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
228+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
229229 cp -R /etc/kubernetes/pki /tmp/${HOST1}/
230230 find /etc/kubernetes/pki -not -name ca.crt -not -name ca.key -type f -delete
231231
232- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST0}/kubeadmcfg.yaml
233- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST0}/kubeadmcfg.yaml
234- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
235- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
232+ kubeadm init phase certs etcd-server --config=/tmp/${HOST0}/kubeadmcfg.yaml
233+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST0}/kubeadmcfg.yaml
234+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
235+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
236236 # No need to move the certs because they are for HOST0
237237
238238 # clean up certs that should not be copied off this host
@@ -241,25 +241,25 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具;在这
241241 ```
242242 -->
243243 ```sh
244- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST2}/kubeadmcfg.yaml
245- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST2}/kubeadmcfg.yaml
246- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
247- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
244+ kubeadm init phase certs etcd-server --config=/tmp/${HOST2}/kubeadmcfg.yaml
245+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST2}/kubeadmcfg.yaml
246+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
247+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST2}/kubeadmcfg.yaml
248248 cp -R /etc/kubernetes/pki /tmp/${HOST2}/
249249 # 清理不可重复使用的证书
250250 find /etc/kubernetes/pki -not -name ca.crt -not -name ca.key -type f -delete
251251
252- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST1}/kubeadmcfg.yaml
253- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST1}/kubeadmcfg.yaml
254- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
255- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
252+ kubeadm init phase certs etcd-server --config=/tmp/${HOST1}/kubeadmcfg.yaml
253+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST1}/kubeadmcfg.yaml
254+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
255+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST1}/kubeadmcfg.yaml
256256 cp -R /etc/kubernetes/pki /tmp/${HOST1}/
257257 find /etc/kubernetes/pki -not -name ca.crt -not -name ca.key -type f -delete
258258
259- kubeadm alpha phase certs etcd-server --config=/tmp/${HOST0}/kubeadmcfg.yaml
260- kubeadm alpha phase certs etcd-peer --config=/tmp/${HOST0}/kubeadmcfg.yaml
261- kubeadm alpha phase certs etcd-healthcheck-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
262- kubeadm alpha phase certs apiserver-etcd-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
259+ kubeadm init phase certs etcd-server --config=/tmp/${HOST0}/kubeadmcfg.yaml
260+ kubeadm init phase certs etcd-peer --config=/tmp/${HOST0}/kubeadmcfg.yaml
261+ kubeadm init phase certs etcd-healthcheck-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
262+ kubeadm init phase certs apiserver-etcd-client --config=/tmp/${HOST0}/kubeadmcfg.yaml
263263 # 不需要移动 certs 因为它们是给 HOST0 使用的
264264
265265 # 清理不应从此主机复制的证书
@@ -370,9 +370,9 @@ kubeadm 包含生成下述证书所需的所有必要的密码学工具;在这
370370 既然证书和配置已经就绪,是时候去创建清单了。在每台主机上运行 ` kubeadm` 命令来生成 etcd 使用的静态清单。
371371
372372 ` ` ` sh
373- root@HOST0 $ kubeadm alpha phase etcd local --config=/tmp/${HOST0} /kubeadmcfg.yaml
374- root@HOST1 $ kubeadm alpha phase etcd local --config=/home/ubuntu/kubeadmcfg.yaml
375- root@HOST2 $ kubeadm alpha phase etcd local --config=/home/ubuntu/kubeadmcfg.yaml
373+ root@HOST0 $ kubeadm init phase etcd local --config=/tmp/${HOST0} /kubeadmcfg.yaml
374+ root@HOST1 $ kubeadm init phase etcd local --config=/home/ubuntu/kubeadmcfg.yaml
375+ root@HOST2 $ kubeadm init phase etcd local --config=/home/ubuntu/kubeadmcfg.yaml
376376 ` ` `
377377
378378 < ! --
0 commit comments