Solved

Cool GitHub Project: Kubernetes and Nutanix


Userlevel 7
Badge +34
  • Community Manager
  • 473 replies
Cool GitHub project - Kubernetes installation tools for Nutanix. Give it a try and add your comments in this forum. I'm sure RedDevil would like to hear your feedback.

Download here: https://github.com/nutanix/k8s


icon

Best answer by RedDevil 14 December 2017, 16:22

TehKernelthx for feedback. It looks like You deployed k8s on Nutanix cluster and I presume that You can connect to it with kubectl.

The issue is with the web dashboard and is related with the certification management a part of the kubernetes dashboard.
You can find more about that here
https://github.com/kubernetes/dashboard/wiki/Certificate-management

We will explain that in the documentation as well.

View original

11 replies

Badge +4
First off, thanks for posting this to make people aware RedDevil !

I was able to run through the deployment steps, but after the ansible playbook completes and I attempt to access the dashboard, I recieve the following error in my browser:

{ "kind": "Status", "apiVersion": "v1", "metadata": { }, "status": "Failure", "message": "forbidden: User "kube" cannot get path "/ui"", "reason": "Forbidden", "details": { }, "code": 403}I am using the username and password listed in the instructions. Attempting to use any other combination just continues to prompt me for authentication. Any ideas what I may be doing wrong?
Badge +2
TehKernelthx for feedback. It looks like You deployed k8s on Nutanix cluster and I presume that You can connect to it with kubectl.

The issue is with the web dashboard and is related with the certification management a part of the kubernetes dashboard.
You can find more about that here
https://github.com/kubernetes/dashboard/wiki/Certificate-management

We will explain that in the documentation as well.

Badge +4
RedDevil Thanks for the follow-up. I was indeed able to connect using kubectl, and it appears the initial deployment went well.

I'll read up on the certificate piece. Thanks!
Badge +1
TehKernel in .kubespray/artifacts where admin.conf is placed run:

cat admin.conf | grep certificate-authority-data | awk '{print $2}' | base64 --decode > ca.pemcat admin.conf | grep client-certificate-data | awk '{print $2}' | base64 --decode > k8s_crt.pemcat admin.conf | grep client-key-data | awk '{print $2}' | base64 --decode > k8s_key.pemopenssl pkcs12 -export -out k8s_crt.pfx -inkey k8s_key.pem -in k8s_crt.pem -certfile ca.pem
and then import k8s_crt.pfx in your browser.
Badge +4
That's perfect. I was able to get the dashboard to load after running those commands and importing the cert. I would have never figured that out on my own. 🙂

Thanks RedDevil
Badge +2
TehKernel I'm glad that everything is working properly.Keep an eye on this project, soon we will introduce new functionality.
Badge
Hey, How did you solve the problem of overlay networking in Nutanix to deploy Kubernetes?
Badge +4
I haven't had time to get into networking or anything just yet. I was having issues with just getting the installer to run and be able to access the dashboard. I've only had time to try some basic provisioning, which was giving me some fits, but I haven't had the time to look into what is happening or why. Sorry.
Badge +1
mesumanth Installer by default is using flannel to setup overlay network
For kubernetes services it will use
10.233.0.0/18and for pods
10.233.64.0/18
Badge +1
mesumanth Installer by default is installing flannel to create overlay network.
For kubernetes services it will use 10.233.0.0/18 and for pods 10.233.64.0/18.
Badge +2
@mesumanth Installer by default is using flannel to setup overlay network

Reply