kuberntes 部署dashboard

2019-04-03 本文已影响17人条子在洗澡
详情参考文档：https://kubernetes.io/docs/tasks/access-application-cluster/web-ui-dashboard/

master ip： 192.168.199.130
#每个节点下载镜像
docker pull k8s.gcr.io/kubernetes-dashboard-amd64:v1.10.1

#下载yaml部署文件
wget https://raw.githubusercontent.com/kubernetes/dashboard/master/aio/deploy/recommended/kubernetes-dashboard.yaml

#创建对应pod
kubectl apply -f kubernetes-dashboard.yaml

#获取pod状态
NAME                                    READY     STATUS    RESTARTS   AGE       IP                NODE
kube-scheduler-k8s-master1              1/1       Running   11         4d        192.168.199.130   k8s-master1
kubernetes-dashboard-5dd89b9875-z8c6f   1/1       Running   0          16s       10.244.2.67       k8s-node2

.......

#创建一个专用的 serviceaccount 帐号 dashboard-admin
kubectl create serviceaccount dashboard-admin -n kube-system

#绑定角色 cluster-admin
kubectl create clusterrolebinding cluster-dashboard-admin --clusterrole=cluster-admin --serviceaccount=kube-system:dashboard-admin

#查看生成的secret（dashboard-admin-token-**** ）
[root@k8s-master1 k8s_yml]# kubectl get secrets -n kube-system
NAME                                             TYPE                                  DATA      AGE
kubernetes-dashboard-certs                       Opaque                                0         3m
kubernetes-dashboard-csrf                        Opaque                                1         3m
dashboard-admin-token-pmqdg

#获取登陆dashboard用的secret的taken
[root@k8s-master1 k8s_yml]# kubectl describe secrets dashboard-admin-token-pmqdg -n kube-system
Name:        dashboard-admin-token-pmqdg
Namespace:    kube-system
token:       eyJhbGciOiJSUzI1NiIsImtpZCI6IiJ9.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.Btbb-izXFz0m3wHqt5Wv1HrQ7o989_sAVHCM41Erd2tzRrr-MHEkjb1n7oLp_mMtxc-FMuHiZaJDuBiLFBttfpKgxR6OeUq5YNC3qfutdFokkSATRgBjpgWXFplHpF6aq1bWgbVtBmDF7A0U8cXozOW2QmNZswTB207yC-Fmb5bqN3JdBwdQs4LqOWnKEx4E2F7YBIyBuXUAT6Lngsi371xw2DYDdUgpOHGvsIGOBwuFC5lfL1QESPDwVzoGMInUlP9c4QuWpGtmz6yHp9LxK45lI8eVsHkH4pw1OmGAEZWmtakrCTQDZJzkpSEADbsr_Jeg6nI4ZGTtDQYdXrLA0w


# 修改 svc 的的网络类型
kubectl patch svc kubernetes-dashboard -p '{"spec":{"type":"NodePort"}}' -n kube-system

#获取kubernetes-dashboard svc信息
[root@k8s-master1 k8s_yml]# kubectl get svc -n kube-system
NAME                   TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)         AGE
heapster               ClusterIP   10.105.40.197   <none>        80/TCP          4d
kube-dns               ClusterIP   10.96.0.10      <none>        53/UDP,53/TCP   4d
kubernetes-dashboard   NodePort    10.110.138.52   <none>        443:32152/TCP   13m

#浏览器访问 https://192.168.199.130:32152
#输入  kubectl describe secrets dashboard-admin-token-pmqdg -n kube-system |grep token:
获取到的

#销毁dashboard
kubectl delete svc  kubernetes-dashboard --namespace=kube-system
kuberntes 部署dashboard

猜你喜欢

热点阅读
