Dashboard: i can access dashboard in Linux with https://masternodeIP:port with googlechrome, but can't do that in Windows.
Environment
i can access dashboard in Linux browser with https://masternodeIP:port , but can't access in Windows.
the computers are all in the same local network, and can reach each other.
the error code shown in the windows' browser is NET::ERR_CERT_INVALID.
Dashboard version: 1.8.3
Kubernetes version: 1.9
Operating system: linux/ windows
Node.js version:
Go version:
GoodJoey
All 8 comments
我之前也有这个问题。后来我通过自己生成证书文件后这个问题没有了。证书生成的文档:https://github.com/kubernetes/dashboard/wiki/Certificate-management
weapon008
on 13 Apr 2018
@GoodJoey I met the same problem.
When I create a dashboard deployment, this solve the NET::ERR_CERT_INVALID problem of chrome:
$ mkdir certs
$ openssl req -nodes -newkey rsa:2048 -keyout certs/dashboard.key -out certs/dashboard.csr -subj "/C=/ST=/L=/O=/OU=/CN=kubernetes-dashboard"
$ openssl x509 -req -sha256 -days 365 -in certs/dashboard.csr -signkey certs/dashboard.key -out certs/dashboard.crt
$ kubectl create secret generic kubernetes-dashboard-certs --from-file=certs -n kube-system
$ kubectl create -f kubernetes-dashboard.yaml
xuchenhao001
on 30 Apr 2018
https://masternodeIP:port - not sure which port you mean. Most likely your setup only allows local bindings to this port. Use kubectl proxy to connect from outside to apiserver. Or expose Dashboard with nodeport or loadbalancer. Make sure to have proper SSL & authentication in place
cheld
on 1 May 2018
@xuchenhao001
thanks, i will take a try
@cheld
by https://masternodeIP:port , i meant i can access the dashboard from another linux machine.
but can't access the dashboard from another windows machine. seems like some certification error.
GoodJoey
on 2 May 2018
"/C=/ST=/L=/O=/OU=/CN=kubernetes-dashboard"
this info should specify for the case when you create it, for example, this info should get from this command "openssl x509 -req -sha256 -days 365 -in dashboard.csr -signkey dashboard.key -out dashboard.crt"
GangChenTFS
on 17 Jan 2019
https://github.com/kubernetes/dashboard/issues/3472
This solution works !!!
- Install OpenSSL on windows
- Create .crt, .csr and .key(in windows - Host machine)
openssl req -nodes -newkey rsa:2048 -keyout certs/dashboard.key -out certs/dashboard.csr -subj "/C=/ST=/L=/O=/OU=/CN=kubernetes-dashboard"
openssl x509 -req -sha256 -days 365 -in certs/dashboard.csr -signkey certs/dashboard.key -out certs/dashboard.crt - scp it onto kubernetes master VM
- Create secret
$ kubectl create secret generic kubernetes-dashboard-certs --from-file=certs -n kube-system - Create dashboard(recommended .yaml to be modified to use type: NodePort & nodePort: 32323(eg.)
$ kubectl create -f kubernetes-dashboard.yaml - From host machine(Chrome browser) - Use https://
:32323(eg.,) - It still gives you a warning message, but if drop down error on the page and "Proceed", page should load
pravinba
on 23 Jun 2019
FYI for those using v2 of the dashboard you will need to change the namespace in which you create the kubernetes-dashboard-certs secret as it has been moved to kubernetes-dashboard from kube-system.
zimmertr
on 12 Oct 2019
FYI for those using v2 of the dashboard you will need to change the namespace in which you create the
kubernetes-dashboard-certssecret as it has been moved tokubernetes-dashboardfromkube-system.
thansk..i also notice it so create the namespace first then apply the yaml file..
which works for me..
cool.
graywen24
on 9 Jan 2020
Related issues
donspaulding
·
5Comments
mhobotpplnet
·
3Comments
wu105
·
3Comments
eloyekunle
·
3Comments
maciaszczykm
·
4Comments
Most helpful comment
@GoodJoey I met the same problem.
When I create a dashboard deployment, this solve the
NET::ERR_CERT_INVALIDproblem of chrome: