Im trying to setup a cluster with authentication handled by an OpenID Connect server.
The kubernetes version is 1.15.3
kubeadm init --config ~/kubeadm-config.yml with the following kubeadm configration file:
apiVersion: kubeadm.k8s.io/v1beta2 kind: InitConfiguration localAPIEndpoint: advertiseAddress: 172.17.8.100 bindPort: 6443 --- apiVersion: kubeadm.k8s.io/v1beta2 kind: ClusterConfiguration apiServer: extraArgs: oidc-issuer-url: https://keycloak.xxxxxx.xx/auth/realms/master oidc-username-claim: sub oidc-client-id: kubernetes-cluster oidc-ca-file: /root/myCA.pem networking: podSubnet: 10.32.0.0/12
I get the following error:
remote version is much newer: v1.16.1; falling back to: stable-1.15\nerror execution phase wait-control-plane: couldn't initialize a Kubernetes cluster
When I omit all extraArgs related to openid (oidc-issuer-url…etc), the cluster is setup but without the desired configuration. What am’I missing?