ETCD Operations

This section contains info about Operational tasks such as installing/rotating certificates, making backups, etc. So everything after installation, and not included in the normal intended use of ETCD.

It is assumed that we use ETCD as installed in kubernetes as an integral part of it. Standalone ETCD instances will have different workinstructions.

Certificates

Specifying cert location

    --cacert /etc/kubernetes/pki/etcd/ca.crt     
    --cert /etc/kubernetes/pki/etcd/server.crt     
    --key /etc/kubernetes/pki/etcd/server.key

Example command

kubectl exec etcd-master -n kube-system -- sh \
    -c "ETCDCTL_API=3 etcdctl get / --prefix --keys-only --limit=10 \
    --cacert /etc/kubernetes/pki/etcd/ca.crt \
    --cert /etc/kubernetes/pki/etcd/server.crt  \
    --key /etc/kubernetes/pki/etcd/server.key"