1、把kubeconfig复制到node节点上
[root@localhost ssl]# scp *kubeconfig [email protected]:/opt/kubernetes/cfg/
[root@localhost ssl]# scp *kubeconfig [email protected]:/opt/kubernetes/cfg/
2、移动到k8s目录
[root@localhost ~]# mv kubelet kube-proxy /opt/kubernetes/bin/
3、赋予执行权限
[root@localhost ~]# chmod +x /opt/kubernetes/bin/*
4、赋予脚本执行权限
[root@localhost ~]# chmod +x *.sh
5、启动前创建用户(master机器执行)
[root@localhost ~]# kubectl create clusterrolebinding kubelet-bootstrap --clusterrole=system:node-bootstrapper --user=kubelet-bootstrap
clusterrolebinding "kubelet-bootstrap" created
6、执行kubelet.sh 参数一:当前机器IP 参数二:DNS地址
[root@localhost ~]# ./kubelet.sh 192.168.1.22 10.10.10.2
7、执行proxy.sh 参数一:当前机器IP
[root@localhost ~]# ./proxy.sh 192.168.1.22
8、允许node请求master证书(在master上执行)
查看node请求信息
[root@localhost ~]# kubectl get csr
NAME AGE REQUESTOR CONDITION
node-csr-uVVOaLhhBzQmC8KabkTCjnuUutuMQzZxLhumoHQ5T6Q 26m kubelet-bootstrap Pending
允许访问
[root@localhost ~]# kubectl certificate approve node-csr-uVVOaLhhBzQmC8KabkTCjnuUutuMQzZxLhumoHQ5T6Q
certificatesigningrequest "node-csr-uVVOaLhhBzQmC8KabkTCjnuUutuMQzZxLhumoHQ5T6Q" approved
允许访问后的状态
[root@localhost ~]# kubectl get csr
NAME AGE REQUESTOR CONDITION
node-csr-uVVOaLhhBzQmC8KabkTCjnuUutuMQzZxLhumoHQ5T6Q 30m kubelet-bootstrap Approved,Issued
查看已经加入的节点信息
[root@localhost ~]# kubectl get node
NAME STATUS ROLES AGE VERSION
192.168.1.22 Ready <none> 1m v1.9.0