We have our eks kubernetes cluster and a ec2 instance with harbor registry. This registry has a self signed certificate, which needs to be in the worker nodes to be able to pull/push to this docker registry. The problem is that i have to autoscale my eks nodes depending on the load, but new scaled nodes must have the signed certificate to be able to contact the registry. Any ideas? Is it possible to make AMI image or are there other ways?
eks autoscaler and harbor registry with self signed certificate
749 views Asked by abdel2020 At
1
There are 1 answers
Related Questions in KUBERNETES
- Golang == Error: OCI runtime create failed: unable to start container process: exec: "./bin": stat ./bin: no such file or directory: unknown
- I can't create a pod in minikube on windows
- Oracle setting up on k8s cluster using helm charts enterprise edition
- Retrieve the Dockerfile configuration from the Kubernetes and also change container Java parameter?
- Summarize pods not running, by Namespace and Reason - I'm having trouble finding the reason
- How to get Java running parameters from Spring Boot running inside container in pod where no ps exist
- How do we configure prometheus server to scrape metrics from a pod with Istio sidecar proxy?
- In rke kube-proxy pod is not present
- problem with edge server registration in Eureka
- Unable to Access Kubernetes LoadBalancer Service from Local Device Outside Cluster
- Kubernetes cluster on GCE connection refused error
- Based on my experience, I've outlined the Kubernetes request flow. Could someone please add or highlight any points I might have overlooked?
- how to define StackGres helm chart "restapi" values to use internal LoadBalancer - AWS EKS
- Python3.11 can't open file [Errno 2] No such file or directory
- Cannot find remote pod service - SERVICE_UNAVAILABLE
Related Questions in AMAZON-EKS
- how to define StackGres helm chart "restapi" values to use internal LoadBalancer - AWS EKS
- AWS EKS Fargate pod scheduling issue with Prometheus deployment
- EKS AMI kernel debug symbols
- How to add Addons to EKS with Pulumi
- Intermittent ec2ApiErrCount in EKS CNI Metrics Helper
- Implementing Multi-Tenant Access Restriction with Keycloak and Istio
- Any example to upgrade an aws eks cluster using github actions workflow on a self-hosted runner outside of cluster?
- How to set nodeSelector for controller for AWS EKS aws-ebs-csi-addon?
- Insight: Deprecated APIs removed in Kubernetes v1.29
- Multi attach error in AWS EKS deployment (rolling update)
- How to pass or allow spark-operator pod in eks to access AWS resources like S3
- Grpc.Core.RpcException: Status(StatusCode="PermissionDenied", Detail="Bad gRPC response. HTTP status code: 403")
- "413 Request Entity Too Large" when serving Angular web (client side) with Nginx
- Airflow `sensing task` queued but not run. What is the problem?
- Asynchronous dumping of requests received on FASTAPI using background tasks into a Kinesis Stream is increasing the response time drastically
Related Questions in AMAZON-AMI
- EKS AMI kernel debug symbols
- Cloud-init is not able to find the data source
- The AWS user data option isn't functioning
- What is the difference disable an AMI vs deregister an AMI? Also what is the process of deleting a private ami in AWS?
- How to find out centos7 ec2 instance
- How to determine if any instance was created from AMI in AWS Marketplace or not?
- Nginx tries to read config file in one pread() and fails on specific AMI on Amazon
- Is there a documented set of steps for cleaning an AWS instance before taking a snapshot to create an AMI?
- Is it safe to launch an AMI based from a snapshot?
- AWS EC2 export-image Task Fails with Error "Unsupported architecture 183 for 6.2.0-1017-aws"
- Terraform 12 data aws_ami complex name_regex
- Trying to create a windows docker image from amazon ec2 ami image
- Read terraform dynamic nested object
- Sharing AWS AMI Images Between Accounts Not Working - Image not visible
- Failed to delete snapshot. snap-0a55ef2a57ce45e17: The snapshot snap-0a55ef2a57ce45e17 is currently in use by ami-0de0d1c34cd7d29d5
Related Questions in AWS-AUTO-SCALING
- Step scaling option disabled for ECS Fargate service
- How to run a single ECS task in only one EC2 instance using auto scaling and capacity provider?
- Domain joining ec2 of autoscaling group in aws
- Policy contains statement with one or more invalid principals. AWS Autoscaling
- How load balancer discovers new instances that are added?
- Dynamically Update Ips of AWS Autoscaling instances in Jenkins SSH Global configuration
- User data works on individual EC2 instance but not in Auto Scaling Group
- Request a solution for pod zero-downtime with single replia when node auto scaling
- AWS autoscaling group: Wait for first instance to finish before scaling-out again
- Autoscaling of EC2 Instances
- AWS Application load balancer : time out on health check
- Can I create an ASG with desired capacity of 1 and minimum group size of 0?
- Elastic Beanstalk ebextension config not running for instances created by autoscaling group thus not running cloudwatch cmds
- EC2 Autoscaling group launching more instances than required
- Wait for multiple lines to be logged in Ansible
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
The above queries could be resolved in multiple ways. I will share the 2 of them here -
IF you are using EKS managed Nodegroup or custom nodegroup.
a) On this case, please create an ami image of the node that has the registry script running, please ensure you have it running at bootup before you create the ami image.
b) Once you are done with the point in (a), please provision the AWS managed nodegroup to use the ami image that you created. If you are using terraform or any other infra provision tool, you can make the changes.
a) Create an ami image of that node.
b) Create a new Launch configuration by running the following command:
c) Update the autoscaling group
Incase of custom managed nodegroup, you can also set bootstrap parameters. unlike AWS Managed nodegroup. as I write today, till date, there is no way to bootstrap argument to the managed nondegroup. it may come on the later phase but we dont have that options as of now in the time of this writing.