Adding new load-balancer to kubernetes x509 certificate

flindvall · January 16, 2019, 1:53pm

Hello!

I’m running a k8s cluster in AWS and I’ve created a new load-balancer that will be used to access the cluster via kubectl. I’ve update the kubeconfig with the new url but I run in to the following issue when trying to run any kubectl command:

Unable to connect to the server: x509: certificate is valid for…etcetc

I’m a bit unsure of how I can add the new load-balancer to the certificate or renew the certificate so that it includes it. Any help is welcome, thanks in advance! (edited)

letthefireflieslive · July 13, 2021, 12:22pm

Experiencing the same problem, I already tried to use --apiserver-cert-extra-sans

sudo kubeadm init --control-plane-endpoint dedicatedloadbalancerdns.com:443 --kubernetes-version v1.21.2 --pod-network-cidr 10.244.0.0/16 --cri-socket /run/containerd/containerd.sock --upload-certs --apiserver-cert-extra-sans=dedicatedloadbalancerdns.com,localhost,existingmaster.com,additionamaster1.com,additionalmaster2.com --apiserver-bind-port=443

Topic		Replies	Views
Unable to connect to the server: x509: certificate has expired or is not yet valid General Discussions	4	36896	June 28, 2021
Apiserver ssl certificate re-installation General Discussions	0	784	November 28, 2019
After renew the certs getting error in kube-apiserver pod logs : Unable to authenticate the request due to an error: x509: certificate has expired or is not yet valid General Discussions kubernetes-custom-resources	0	722	September 26, 2023
Noob Question on kubectl expose deployment nginx --type=LoadBalancer General Discussions	1	424	October 28, 2020
Apiserver pod logs that certificate has expired or is not yet valid General Discussions	0	1073	June 22, 2022

Adding new load-balancer to kubernetes x509 certificate

Related Topics