We have our eks kubernetes cluster and a ec2 instance with harbor registry. This registry has a self signed certificate, which needs to be in the worker nodes to be able to pull/push to this docker registry. The problem is that i have to autoscale my eks nodes depending on the load, but new scaled nodes must have the signed certificate to be able to contact the registry. Any ideas? Is it possible to make AMI image or are there other ways?
eks autoscaler and harbor registry with self signed certificate
743 Views Asked by abdel2020 At
1
There are 1 best solutions below
Related Questions in KUBERNETES
- How to know a Pod's own IP address from inside a container in the Pod?
- Who will decide the "specified number of pods" for replication controller in kubernetes?
- Access other containers of a pod in Kubernetes
- Kubernetes cluster using Vagrant not working after restart
- kubectl not installed with gcloud SDK
- How do I access the Kubernetes api from within a pod container?
- Exposing several services with Vagrant and Kubernetes on my own server
- Does Kubernetes provision new VMs for pods on my cloud platform?
- Any suggestion for running Aerospike on Kubernetes on CoreOS on GCE?
- Kubernetes - kubectl exec bash - session drop and line width
- Google Container Engine (GKE): "Hello Wordpress" tutorial not working (ERR_CONNECTION_REFUSED)
- Kubernetes Pod Creation Speed
- How can i set max count of pods for replication-controller per node?
- Is there a way to tell kubernetes to update your containers?
- Postgres with Kubernetes and persistentDisk
Related Questions in AMAZON-EKS
- Terraform: How to add Windows worker nodes to eks cluster?
- SSL with GRPC on AWS EKS and Istio Ingress gives StatusCode.UNAVAILABLE
- Jenkins Helm backup fails with WebIdentityErr
- How to share an AWS NLB between two EKS Services?
- Airflow Unittest.cfg permission problems?
- How to enable automatic mTLS using istio mesh in AWS EKS?
- Cert-Manager dns01 challenge order pending
- Communication Between Pods in Different Cluster in K8s using yaml
- nginx docker connect() failed (110: Connection timed out) while connecting to upstream, same configuration works without docker, what could be wrong?
- AWS Elastic Kubernetes Service: how to expose a container/pod to an Elasticsearch cluster inside AWS?
- kubectl authentication to aws eks cluster
- Adding EKS managed windows node group failed. How to debug?
- Kubernetes AWS NLB Services Create Excessive Amount Of Security Group Rules
- Autoscaling Kubernetes based on number of Jobs on AWS EKS
- EKS LoadBalancer service not returning response outside from EKS
Related Questions in AMAZON-AMI
- How to copy the old AWS instance?
- Access key in EC2 instance does not exist
- Akka, AMI - discover remote actors for database access
- Cloning a EC2 Ubuntu instance
- How to configure applications in ami 4
- AWS Opworks Instances not starting when created from Custom AMI on EC2
- Amazon Linux AMI - Upgrade OPenssh version
- Can I use AWS CloudFormation with a custom AMI?
- EC2 and AMI create automation with a file to run
- Asterisk AMI Originate: Without Extension Local Ringing
- Can I delete original EC2 instance after creating an image out of it?
- Amazon aws snapshots and AMIs
- Backing up my Amazon AMI to an external image
- Is it possible to share Amazon AMI images to other users programatically using AWS SDK
- How can Vagrant/Berkshelf be used to test AWS apps?
Related Questions in AWS-AUTO-SCALING
- How can I select a community AMI in AWS Launch configuration?
- How can I add a health check to check if my instances in aws autoscale established a successful connection with another independent instance
- Can an on-premises load balancer be used to connect to AWS EC2 Autoscaling group?
- Increase RDS Storage Size with no downtime
- Auto-scaling Instances in multi-AZ environment
- AWS Beanstalk with working app fails to deploy app to new ec2 when current one is terminated
- eks autoscaler and harbor registry with self signed certificate
- AWS: Is there a way to use an absolute instance weighting capacity for EC2 AutoScaling?
- Intance refresh does not set up new instances in new subnets
- AWS auto scaling group, multiple ec2 instances are running, how to set that only specific ec2 instance to access RDS?
- Reset AWS autoscaling warm pool instances during deployment
- Auto-scaling group based on SQS depth
- ECS Agent cannot start! Unable to initialize Task ENI dependencies
- AWS Elastic Beanstalk - Why does a leader_only command on non-leaders output as an error?
- How to configure Service Auto-scaling in AWS ECS (using step scaling)
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
The above queries could be resolved in multiple ways. I will share the 2 of them here -
IF you are using EKS managed Nodegroup or custom nodegroup.
a) On this case, please create an ami image of the node that has the registry script running, please ensure you have it running at bootup before you create the ami image.
b) Once you are done with the point in (a), please provision the AWS managed nodegroup to use the ami image that you created. If you are using terraform or any other infra provision tool, you can make the changes.
a) Create an ami image of that node.
b) Create a new Launch configuration by running the following command:
c) Update the autoscaling group
Incase of custom managed nodegroup, you can also set bootstrap parameters. unlike AWS Managed nodegroup. as I write today, till date, there is no way to bootstrap argument to the managed nondegroup. it may come on the later phase but we dont have that options as of now in the time of this writing.