Ansible新增节点
- 在新节点配置免密登陆
[root@CentOSX ~]# ssh-keygen -t rsa
[root@CentOSX ~]# ssh-copy-id k8s-master1
- 修改hosts,添加新节点ip
# vi hosts
...
[newnode]
192.168.xx.xx node_name=k8s-xx
- 执行部署
# ansible-playbook -i hosts add-node.yml -uroot -k
- 查询状态
[root@k8s-master1 jic-ingress]# kubectl get nodes
NAME STATUS ROLES AGE VERSION
k8s-master1 Ready master 236d v1.18.6
k8s-node1 Ready node 236d v1.18.6
k8s-node2 Ready node 236d v1.18.6
k8s-node3 Ready node 236d v1.18.6
k8s-node4 Ready node 236d v1.18.6
k8s-node5 Ready node 231d v1.18.6
k8s-node6 Ready node 27h v1.18.6
k8s-node7 Ready node 27h v1.18.6
问题:
若kubectl get node 没有看到新加的节点,按以下操作
[root@k8s-master1 ~]# kubectl get csr
NAME AGE SIGNERNAME REQUESTOR CONDITION
node-csr-lILpLnI0lOhmxTa0QCwYc5nNCg2Q2UTyALOVDWS8g00 9m26s kubernetes.io/kube-apiserver-client-kubelet kubelet-bootstrap Pending
node-csr-q6BWieglcWdm5IJskCBCpRg9igmuuj5Dy4Qe9dS6f4Y 9m26s kubernetes.io/kube-apiserver-client-kubelet kubelet-bootstrap Pending
#状态为pending,做认证
[root@k8s-master1 ~]# kubectl certificate approve node-csr-q6BWieglcWdm5IJskCBCpRg9igmuuj5Dy4Qe9dS6f4Y
#查看node状态
[root@k8s-master1 ~]# kubectl get nodes