kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
website/content/en/docs/setup/best-practices
History
Lubomir I. Ivanov ddb784aab1 certificates.md: add note about system:masters in apiserver cert 
The kube-apiserver flag --kubelet-client-certificate
accepts a client certificate (kube-apiserver-kubelet-client.crt)
to connect to the kubelet. There is no need for this certificate
to have "system:masters" as "O" in the Subject, instead it
can be a less privileged group like kubeadm's "kubeadm:cluster-admins".
 		2023-11-10 15:17:26 +02:00
..
_index.md
certificates.md certificates.md: add note about system:masters in apiserver cert 2023-11-10 15:17:26 +02:00
cluster-large.md Add Commas with large numbers to assist the reader. 2023-01-12 17:52:59 +08:00
enforcing-pod-security-standards.md Bump the feature state of the Pod Security plugin to stable 2022-09-22 15:12:19 +02:00
multiple-zones.md Move Pod Topology Spread Constraints into scheduling 2022-07-14 23:59:05 +01:00
node-conformance.md "Validate node setup page mentions Docker as a container runtime" 2023-09-13 14:13:03 +05:30