Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cert storage and distribution #63

Open
styk-tv opened this issue Feb 2, 2017 · 1 comment
Open

cert storage and distribution #63

styk-tv opened this issue Feb 2, 2017 · 1 comment
Assignees
@hantden

Comments

@styk-tv
Copy link
Contributor

styk-tv commented Feb 2, 2017

We will use S3 private bucket for Core/Cluster cert distribution.

  1. generate new key as jenkins user
sudo su -c "ssh-keygen -t rsa -f ~/.ssh/id_rsa -q -P '' -C Madcore-Core" jenkins

  1. copy script to /opt/backup/certs/ssh (public only) id_rsa.pub

  2. copy kubernetes certs to /opt/backup/certs/kubernetes

  3. then on Ingress instance in k8s-install.sh script copy from s3 back to /opt/backup/certs/ssh and /opt/backup/certs/kubernetes folders only

  4. append (not replace) public ssh key from /opt/backup/certs/ssh/id_rsa.pub to /users/ubuntu/.ssh/authorized_keys (make sure permissions and ownership stays the same)

you should now be able to continue with kubernetes node to join master as well as have ability to connect to node from Core.
@styk-tv
Copy link
Contributor Author

styk-tv commented Feb 2, 2017

would be appropriate to move current /opt/backup/certs to /opt/backup/certs/ssl but that would require change of ALL references. and there are quite a few

@styk-tv styk-tv mentioned this issue Feb 2, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hantden hantden

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@styk-tv @hantden