1 개요
- K8s API 서버 SSL 인증서 확인
$ cat ~/.kube/config | grep server: -B9
apiVersion: v1
clusters:
- cluster:
certificate-authority-data: LS0tLS1CRUd...DQVRFLS0tLS0K
server: https://172.30.1.2:6443
$ openssl s_client -connect 172.30.1.2:6443 </dev/null 2>/dev/null | openssl x509 -inform pem -text | sed -n -e '/-.BEGIN/,/-.END/ p' > ca.crt
$ cat ca.crt
-----BEGIN CERTIFICATE-----
MIIDjDCCAnSgAwIBAgIINXBZAXcoVT4wDQYJKoZIhvcNAQELBQAwFTETMBEGA1UE
AxMKa3ViZXJuZXRlczAeFw0yNDAyMDQwNzQ5MzNaFw0yNTAyMDMwNzU0MzNaMBkx
FzAVBgNVBAMTDmt1YmUtYXBpc2VydmVyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
...
mIx6XIcpI2fqm40kIKWDV+apujNBAI8e1UYP6XW+n/k3vOs5DjTaiF6MZEvT02mF
gCEPLB80Wfz+0fxwRSxq9GORHkDuO8rDvlJ4+Ft2kR60BHKAko0qXGu8X3qXfrzO
egGOpadupHjUWM62qj/NC9sqQnfwiHG6JP4ybiuWNvCnwVoScKE9vw++0/QX6+7y
-----END CERTIFICATE-----
2 같이 보기
편집자
로그인하시면 댓글을 쓸 수 있습니다.
{{ comment.name }}
{{ comment.created | snstime }}
-
{{comment.page_title}} ―{{comment.name}}