apiVersion: kubeadm.k8s.io/v1beta3 kind: InitConfiguration localAPIEndpoint: advertiseAddress: 0.0.0.0 bindPort: 6443 nodeRegistration: name: y1jej00027 taints: - effect: NoSchedule key: node-role.kubernetes.io/control-plane criSocket: unix:///var/run/containerd/containerd.sock --- apiVersion: kubeadm.k8s.io/v1beta3 kind: ClusterConfiguration clusterName: cluster.local etcd: external: endpoints: - https://y1jej00026.my.company.org:2379 - https://y1jej00027.my.company.org:2379 - https://y1jej0002a.my.company.org:2379 caFile: /etc/ssl/etcd/ssl/ca.pem certFile: /etc/ssl/etcd/ssl/node-y1jej00027.pem keyFile: /etc/ssl/etcd/ssl/node-y1jej00027-key.pem dns: imageRepository: registry.k8s.io/coredns imageTag: v1.10.1 networking: dnsDomain: cluster.local serviceSubnet: "192.168.0.0/18" podSubnet: "192.168.64.0/18" kubernetesVersion: v1.28.8 controlPlaneEndpoint: lb-apiserver.kubernetes.local:6443 certificatesDir: /etc/kubernetes/ssl imageRepository: registry.k8s.io apiServer: extraArgs: etcd-compaction-interval: "5m0s" default-not-ready-toleration-seconds: "300" default-unreachable-toleration-seconds: "300" anonymous-auth: "True" authorization-mode: Node,RBAC advertise-address: 0.0.0.0 bind-address: 0.0.0.0 apiserver-count: "3" endpoint-reconciler-type: lease service-node-port-range: 30000-32767 service-cluster-ip-range: "192.168.0.0/18" kubelet-preferred-address-types: "InternalDNS,InternalIP,Hostname,ExternalDNS,ExternalIP" profiling: "False" request-timeout: "1m0s" enable-aggregator-routing: "False" service-account-lookup: "True" oidc-issuer-url: "https://login.microsoftonline.com/28042244-bb51-4cd6-8034-7776fa3703e8/v2.0" oidc-client-id: "8dadf555-e611-43bb-b219-0b7f4087fa7e" oidc-username-claim: "email" oidc-groups-claim: "roles" oidc-username-prefix: "aad:" oidc-groups-prefix: "aad:" storage-backend: etcd3 allow-privileged: "true" event-ttl: 1h0m0s extraVolumes: - name: usr-share-ca-certificates hostPath: /usr/share/ca-certificates mountPath: /usr/share/ca-certificates readOnly: true certSANs: - kubernetes - kubernetes.default - kubernetes.default.svc - kubernetes.default.svc.cluster.local - 192.168.0.1 - localhost - 127.0.0.1 - y1jej00026 - y1jej00027 - y1jej0002a - lb-apiserver.kubernetes.local - 10.184.242.251 - 10.184.242.220 - 10.184.242.229 - 10.184.242.10 - y1jej00026.my.company.org - y1jej00027.my.company.org - y1jej0002a.my.company.org timeoutForControlPlane: 5m0s controllerManager: extraArgs: node-monitor-grace-period: 40s node-monitor-period: 5s cluster-cidr: "192.168.64.0/18" service-cluster-ip-range: "192.168.0.0/18" node-cidr-mask-size: "24" profiling: "False" terminated-pod-gc-threshold: "12500" bind-address: 0.0.0.0 leader-elect-lease-duration: 15s leader-elect-renew-deadline: 10s configure-cloud-routes: "false" flex-volume-plugin-dir: /usr/libexec/kubernetes/kubelet-plugins/volume/exec scheduler: extraArgs: bind-address: 0.0.0.0 config: /etc/kubernetes/kubescheduler-config.yaml profiling: "False" extraVolumes: - name: kubescheduler-config hostPath: /etc/kubernetes/kubescheduler-config.yaml mountPath: /etc/kubernetes/kubescheduler-config.yaml readOnly: true --- apiVersion: kubeproxy.config.k8s.io/v1alpha1 kind: KubeProxyConfiguration bindAddress: 0.0.0.0 clientConnection: acceptContentTypes: burst: 10 contentType: application/vnd.kubernetes.protobuf kubeconfig: qps: 5 clusterCIDR: "192.168.64.0/18" configSyncPeriod: 15m0s conntrack: maxPerCore: 32768 min: 131072 tcpCloseWaitTimeout: 1h0m0s tcpEstablishedTimeout: 24h0m0s enableProfiling: False healthzBindAddress: 0.0.0.0:10256 hostnameOverride: y1jej00027 iptables: masqueradeAll: False masqueradeBit: 14 minSyncPeriod: 0s syncPeriod: 30s ipvs: excludeCIDRs: [] minSyncPeriod: 0s scheduler: rr syncPeriod: 30s strictARP: True tcpTimeout: 0s tcpFinTimeout: 0s udpTimeout: 0s metricsBindAddress: 0.0.0.0:10249 mode: ipvs nodePortAddresses: [] oomScoreAdj: -999 portRange: --- apiVersion: kubelet.config.k8s.io/v1beta1 kind: KubeletConfiguration clusterDNS: - 169.254.25.10 featureGates: CPUManagerPolicyOptions: true CPUManagerPolicyAlphaOptions: true