安装
要部署仪表板,请执行以下命令:
kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.3.1/aio/deploy/recommended.yaml
要从本地工作站访问 Dashboard,您必须创建一个到 Kubernetes 集群的安全通道。运行以下命令:
kubectl proxy
本地访问仪表板:http://localhost:8001/api/v1/namespaces/kubernetes-dashboard/services/https:kubernetes-dashboard:/proxy/
本地没有图形化界面可以使用nginx代理,示例:
server {server_name k8s.fusheng12.cn;listen 443 ssl;ssl_certificate /etc/nginx/server.crt;ssl_certificate_key /etc/nginx/server.key;location / {proxy_pass http://127.0.0.1:8001;}}
创建身份验证令牌 (RBAC)
要了解如何创建示例用户和登录,请遵循创建示例用户指南。
示例:
创建Service Account
apiVersion: v1
kind: ServiceAccount
metadata:
name: admin-user
namespace: kubernetes-dashboard
创建ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: admin-user
roleRef:
apiGroup: rbac.authorization.k8s.io
kind: ClusterRole
name: cluster-admin
subjects:
- kind: ServiceAccount
name: admin-user
namespace: kubernetes-dashboard
获取token
kubectl -n kubernetes-dashboard get secret $(kubectl -n kubernetes-dashboard get sa/admin-user -o jsonpath="{.secrets[0].name}") -o go-template="{{.data.token | base64decode}}"
登录
若有收获,就点个赞吧
0 人点赞
