一、查看证书过期的时间
kubeadm certs check-expiration
二、证书备份
cp -rp /etc/kubernetes/ /etc/kubernetes.20230320
增加配置文件
输出默认配置
kubeadm config print init-defaults
vim ~/kubeadm.yaml
apiVersion: kubeadm.k8s.io/v1beta3
kind: ClusterConfiguration
kubernetesVersion: v1.23.0 #这里改成你集群对应的版本
imageRepository: registry.aliyuncs.com/google_containers
#这里使用国内的镜像仓库,否则在重新签发的时候会报错:could not fetch a Kubernetes version from the internet: unable to get URL "https://dl.k8s.io/release/stable-1.txt"
三、重新生成证书
kubeadm certs renew all --config=~/kubeadm.yaml
四、重新生成配置文件
mkdir /etc/kubernetes/conf.20230320
mv /etc/kubernetes/*.conf /etc/kubernetes/conf.20230320
kubeadm init phase kubeconfig all --config=~/kubeadm.yaml
五、重启kubelet和更新配置
systemctl restart kubelet
cp /etc/kubernetes/admin.conf ~/.kube/config
