Kubernetes requires certs on each nodes/masters to validate each other’s integrity, if the cert ever gets expired, you’d see an error like this: Unable to connect to the server: x509: certificate has expired or is not yet valid.. To fix this cluster, we first need to verify the cert status by: $ openssl x509 -noout -text -in /etc/kubernetes/pki/apiserver.crt Certificate: Data: Version: 3 (0x2) Serial Number: 123123123123123(0x123123123123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=kubernetes Validity Not Before: Nov 16 16:58:58 2017 GMT Not After : Nov 16 16:58:58 2018 GMT .

Continue reading

Author's picture

LuLU

Love coding and new technologies

Cloud Solution Consultant

Canada