initial-cluster-token: etcd-cluster client-transport-security: cert-file: /etc/etcd/etcdserver.pem key-file: /etc/etcd/etcdserver-key.pem trusted-ca-file: /etc/etcd/ca.pem client-cert-auth: true peer-transport-security: cert-file: /etc/etcd/etcdserver.pem key-file: /etc/etcd/etcdserver...
proxy-read-timeout: 0 client-transport-security: cert-file: key-file: client-cert-auth: false trusted-ca-file: auto-tls: false peer-transport-security: cert-file: key-file: client-cert-auth: false trusted-ca-file: auto-tls: false debug: false logger: zap log-outputs: [stderr] force-...
--peer-client-cert-auth 含义:启用对等客户端证书验证。 默认值:false 环境变量:ETCD_PEER_CLIENT_CERT_AUTH 作用: --peer-crl-file 含义:对等证书吊销列表文件的路径。 默认值: 环境变量:ETCD_PEER_CRL_FILE 作用: --peer-trusted-ca-file 含义:对等服务器TLS可信CA文件的路径。 默认值: 环境变量:ETCD_PE...
peer-transport-security: # Path to the peer server TLS cert file. cert-file: # Path to the peer server TLS key file. key-file: # Enable peer client cert authentication. client-cert-auth: false # Path to the peer server TLS trusted CA cert file. trusted-ca-file: # Peer TLS using ...
peer-transport-security: cert-file: '' key-file: '' client-cert-auth: false trusted-ca-file: '' auto-tls: false self-signed-cert-validity: 1 log-level: info logger: zap log-outputs: [stderr] force-new-cluster: false auto-compaction-mode: periodic ...
peer-transport-security: # DEPRECATED: Path to the peer server TLS CA file. ca-file: '/data/etcd/ssl/ca.pem' # Path to the peer server TLS cert file. cert-file: '/data/etcd/ssl/server.pem' # Path to the peer server TLS key file. ...
new# client节点通信 证书配置client-transport-security:cert-file:certs/client.crtkey-file:certs/client.keyclient-cert-auth:truetrusted-ca-file:certs/ca.crt# 集群peer节点间通信 证书配置peer-transport-security:cert-file:certs/peer.crtkey-file:certs/peer.keyclient-cert-auth:falsetrusted-ca-file:...
true peer-transport-security: cert-file: '/etc/kubernetes/etcd/etcd.pem' key-file: '/etc/kubernetes/etcd/etcd-key.pem' peer-client-cert-auth: true trusted-ca-file: '/etc/kubernetes/etcd/etcd-ca.pem' auto-tls: true debug: false log-package-levels: log-outputs: [default] force-new-clu...
双向 name:'default'data-dir: /opt/etcd-data enable-v2:falsedebug:falselogger: zap log-outputs:[stderr]listen-client-urls: https://0.0.0.0:2379 client-transport-security: cert-file: /etc/etcd/certs/server.pem key-file: /etc/etcd/certs/server-key.pem client-cert-auth:truetrusted-ca-file...
client-transport-security: cert-file: '/etc/kubernetes/pki/etcd/etcd.pem' key-file: '/etc/kubernetes/pki/etcd/etcd-key.pem' client-cert-auth: true trusted-ca-file: '/etc/kubernetes/pki/etcd/etcd-ca.pem' auto-tls: true peer-transport-security: cert-file: '/etc/kubernetes/pki/etcd/etcd...