Question

我有以下mysql.yaml文件：

apiVersion: v1beta3
kind: Pod
metadata:
  name: mysql
  labels:
    name: mysql
spec:
  containers:
    - resources:
        limits :
          cpu: 1
      image: mysql
      name: mysql
      env:
        - name: MYSQL_ROOT_PASSWORD
          # change this
          value: yourpassword
      ports:
        - containerPort: 3306
          name: mysql

正在运行kubectl create -f mysql.yaml gives the error：

Error from server: error when creating "mysql.yaml": Pod "Unknown" is forbidden: no API token found for service account default/default, retry after the token is automatically created and added to the service account

我有一个主人和一个节点都是centos 7.1。

Answer 1

要使您的设置正常工作，您可以执行local-up-cluster.sh正在执行的操作：

生成签名密钥：

openssl genrsa -out /tmp/serviceaccount.key 2048

更新/etc/kubernetes/apiserver：

KUBE_API_ARGS="--service_account_key_file=/tmp/serviceaccount.key"

更新/etc/kubernetes/controller-manager：

KUBE_CONTROLLER_MANAGER_ARGS="--service_account_private_key_file=/tmp/serviceaccount.key"

来自https://github.com/kubernetes/kubernetes/issues/11355#issuecomment-127378691

Pod＆＃34; mysql＆＃34;被禁止：找不到服务帐户默认/默认的API令牌

1 个答案: