我在Windows 10 Home的VMWare Workstation 14 Player 14.1.1的ubuntu 16.04 LTS上安装了Docker版本18.09.7。当我尝试运行kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: kubernetes-dashboard-anonymous
rules:
- apiGroups: [""]
resources: ["services/proxy"]
resourceNames: ["https:kubernetes-dashboard:"]
verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
- nonResourceURLs: ["/ui", "/ui/*", "/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/*"]
verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: kubernetes-dashboard-anonymous
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: kubernetes-dashboard-anonymous
subjects:
- kind: User
name: system:anonymous
时,它将返回以下内容:
无法创建API服务器:无法加载X509密钥对(证书:“ /var/docker/server.pem”,密钥:“ /var/docker/serverkey.pem”):打开/ var / docker / server .pem:没有这样的文件或目录
有关如何解决此问题的任何指示?
答案 0 :(得分:0)
重要信息:在尝试使用之前,请确保您已对/ var / docker /文件夹具有写权限,请使用此sudo chmod -R 777 /var/docker/
您需要使用OpenSSL生成您的证书文件,这实际上很简单,只需运行以下命令即可:
openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout /var/docker/serverkey.pem -out /var/docker/server.pem
(请注意,我已经为您的服务器路径(包括x509选项)对其进行了修改!因此只需运行它并报告
sudo dockerd是否正在工作)
看起来第一个选项对您不起作用,请确保您具有上述权限,请尝试以下操作:
openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout serverkey.pem -out server.pem
您也将很高兴知道您可以运行以下命令:sudo su为了始终成为超级用户,因此您无需在每个命令前都键入sudo ...
If that helped you please mark it as the answer by clicking the V button under the upvotes for other people to know :)