Add etcd key and cert environment variables for use with client auth

2026-01-31 17:19:17 -03:30 · 2017-11-07 09:06:16 -05:00
parent ad6fecefa8
commit e45b30d033
13 changed files with 39 additions and 0 deletions
--- a/roles/etcd/defaults/main.yml
+++ b/roles/etcd/defaults/main.yml
@@ -30,3 +30,6 @@ etcd_node_cert_hosts: "{{ groups['k8s-cluster'] | union(groups.get('calico-rr',
 etcd_compaction_retention: "8"

 etcd_vault_mount_path: etcd
+
+# Force clients like etcdctl to use TLS certs (different than peer security)
+etcd_secure_client: true