(1)在跳板机上下载master组件
下载地址:https://dl.k8s.io/v1.9.6/kubernetes-server-linux-amd64.tar.gz
cd /tools/
tar xf kubernetes-server-linux-amd64.tar.gz(2)在跳板机上生成master证书
#cd /temp/ssl
cat >k8s-csr.json <#(3)配置和启动api-server
在跳板机上生成api-server的启动文件
cat > kube-apiserver.service <生成token
cd /temp/ssl
token=`head -c 16 /dev/urandom | od -An -t x | tr -d ' '`
echo "$token,kubelet-bootstrap,10001,'system:kubelet-bootstrap'" >token.csv把master的组件, 证书和私钥以及apiserver的启动文件发送master01上
ansible 192.168.19.128 -m copy -a 'src=token.csv dest=/opt/kubernetes/ssl/token.csv'
ansible 192.168.19.128 -m copy -a 'src=/tools/kubernetes/server/bin/kubectl dest=/opt/kubernetes/bin/kubectl mode=0755'
ansible 192.168.19.128 -m copy -a 'src=/tools/kubernetes/server/bin/kube-apiserver dest=/opt/kubernetes/bin/kube-apiserver mode=0755'
ansible 192.168.19.128 -m copy -a 'src=/tools/kubernetes/server/bin/kube-controller-manager dest=/opt/kubernetes/bin/kube-controller-manager mode=0755'
ansible 192.168.19.128 -m copy -a 'src=/tools/kubernetes/server/bin/kube-scheduler dest=/opt/kubernetes/bin/kube-scheduler mode=0755'
ansible 192.168.19.128 -m copy -a 'src=kubernetes-key.pem dest=/opt/kubernetes/ssl/kubernetes-key.pem'
ansible 192.168.19.128 -m copy -a 'src=kubernetes.pem dest=/opt/kubernetes/ssl/kubernetes.pem'
ansible 192.168.19.128 -m copy -a 'src=kube-apiserver.service dest=/usr/lib/systemd/system/kube-apiserver.service'启动apiserver
systemctl daemon-reload
systemctl start kube-apiserver
systemctl enable kube-apiserver
systemctl status kube-apiserver#(4)配置和启动kube-controller-manager
生成kube-controller-manager的启动服务文件
cat >kube-controller-manager.service<把启动服务文件发送到master
ansible 192.168.19.128 -m copy -a 'src=kube-controller-manager.service dest=/usr/lib/systemd/system/kube-controller-manager.service'在master01上启动kube-controller-manager服务
systemctl daemon-reload
systemctl start kube-controller-manager
systemctl enable kube-controller-manager
systemctl status kube-controller-manager#(5)配置和启动kube-scheduler
生成kube-scheduler服务配置文件
cat >kube-scheduler.service <发送给master01
ansible 192.168.19.128 -m copy -a 'src=kube-scheduler.service dest=/usr/lib/systemd/system/kube-scheduler.service'启动kube-scheduler
systemctl daemon-reload
systemctl start kube-scheduler
systemctl enable kube-scheduler
systemctl status kube-scheduler#(6)验证