【Kubernetes】K8S 安装 Dashboard(最新版)
本例 k8s 是 v1.23.6,对应的 dashboard 是 v2.5.0 这个版本,3、 删除现有的dashboard服务,
1、先下载recommended.yaml文件
本例 k8s 是 v1.23.6,对应的 dashboard 是 v2.5.0 这个版本,
具体去这里查看对应的版本 Releases · kubernetes/dashboard · GitHub
在 master 节点执行
wget https://raw.githubusercontent.com/kubernetes/dashboard/v2.5.0/aio/deploy/recommended.yaml
若无法访问,可以浏览器访问https://raw.githubusercontent.com/kubernetes/dashboard/v2.5.0/aio/deploy/recommended.yaml,我网页加载了三分钟打开了,在master上直接创建(vim)了个recommended.yaml文件,然后把网页里的代码复制,粘贴进yaml文件里去,然后apply了,也成功了。
[root@jdmaster hpa]# vim recommended.yaml
2.安装
1.在 master 节点执行
[root@jdmaster hpa]# kubectl apply -f recommended.yaml
namespace/kubernetes-dashboard created
serviceaccount/kubernetes-dashboard created
service/kubernetes-dashboard created
secret/kubernetes-dashboard-certs created
secret/kubernetes-dashboard-csrf created
secret/kubernetes-dashboard-key-holder created
configmap/kubernetes-dashboard-settings created
role.rbac.authorization.k8s.io/kubernetes-dashboard created
clusterrole.rbac.authorization.k8s.io/kubernetes-dashboard created
rolebinding.rbac.authorization.k8s.io/kubernetes-dashboard created
clusterrolebinding.rbac.authorization.k8s.io/kubernetes-dashboard created
deployment.apps/kubernetes-dashboard created
service/dashboard-metrics-scraper created
deployment.apps/dashboard-metrics-scraper created
2、查看,成功创建
查看是否启动dashboard的pod
[root@jdmaster hpa]# kubectl get pod --all-namespaces
NAMESPACE NAME READY STATUS RESTARTS AGE
kubernetes-dashboard dashboard-metrics-scraper-799d786dbf-kq2hf 0/1 ContainerCreating 0 23s
kubernetes-dashboard kubernetes-dashboard-546cbc58cd-kf4zl 0/1 ContainerCreating 0 23s
查看dashboard对应的服务
[root@jdmaster hpa]# kubectl get svc --all-namespaces
NAMESPACE NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes-dashboard dashboard-metrics-scraper ClusterIP 10.1.47.168 <none> 8000/TCP 3m37s
kubernetes-dashboard kubernetes-dashboard ClusterIP 10.1.39.26 <none> 443/TCP 3m37s
3、 删除现有的dashboard服务,
因为发布服务的类型是ClusterIP ,外面的机器不能访问,不便于我们通过浏览器访问,因此需要改成NodePort型的。
删除:
[root@jdmaster hpa]# kubectl delete service kubernetes-dashboard --namespace=kubernetes-dashboard
service "kubernetes-dashboard" deleted
查看删除成功:
[root@jdmaster hpa]# kubectl get svc --all-namespaces
NAMESPACE NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes-dashboard dashboard-metrics-scraper ClusterIP 10.1.47.168 <none> 8000/TCP 6m52s
4、创建配置文件(一个nodeport的service)
[root@jdmaster hpa]# vim dashboard-svc.yaml
#内容如下:
kind: Service
apiVersion: v1
metadata:
labels:
k8s-app: kubernetes-dashboard
name: kubernetes-dashboard
namespace: kubernetes-dashboard
spec:
type: NodePort
ports:
- port: 443
targetPort: 8443
selector:
k8s-app: kubernetes-dashboard
再次执行:
[root@jdmaster hpa]# kubectl apply -f dashboard-svc.yaml
service/kubernetes-dashboard created
5、再次查看服务,成功
6、想要访问dashboard服务,就要有访问权限,创建kubernetes-dashboard管理员角色
[root@jdmaster hpa]# vim dashboard-svc-account.yaml
#内容如下:
apiVersion: v1
kind: ServiceAccount
metadata:
name: dashboard-admin
namespace: kube-system
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: dashboard-admin
subjects:
- kind: ServiceAccount
name: dashboard-admin
namespace: kube-system
roleRef:
kind: ClusterRole
name: cluster-admin
apiGroup: rbac.authorization.k8s.io
执行:
[root@jdmaster hpa]# kubectl apply -f dashboard-svc-account.yaml
serviceaccount/dashboard-admin created
clusterrolebinding.rbac.authorization.k8s.io/dashboard-admin created
7、获取 token
先获得dashboard的secret对象的名字:
[root@jdmaster hpa]# kubectl get secret -n kube-system|grep admin|awk '{print $1}'
dashboard-admin-token-jz6kv
获得到secret里的token的内容(token理解为认证的密码):
执行:kubectl describe secret dashboard-admin-token-jz6kv -n kube-system|awk '/^token/ {print $2}'
8、访问
浏览器访问 https://192.168.1.7:30619/
注意端口,是在这看到:30619
访问成功:注意是https
若你也像我这样,请:
只需要用键盘输入“thisisunsafe” 即可正常进入。
不需要在地址栏输入,直接在键盘上敲就行。
把上面的 token 粘贴到令牌:
最终效果!
Dashboard最终安装完成,这里就可以看到k8s里的资源对象的信息!希望得到你们的点赞,收藏和关注!谢谢!
K8S/Kubernetes社区为您提供最前沿的新闻资讯和知识内容
更多推荐
3
0- 0
已为社区贡献6条内容
所有评论(0)