|
Component |
edoc platform - microk8s |
|---|---|
|
Version |
N/A |
|
Created on |
|
|
Last modified on |
No Workflow Applied |
|
Review status |
No Workflow Applied |
|
KB article number |
687964161 |
Summary
When calling the Kubernetes API (e.g. via SSH on the edoc platform or with SyncSystemState or by retrieving the system status in edoc system control), you receive a certificate error such as x509 certificate expired.
The Kubernetes API is secured with public/private key authentication. The certificate can expire and you must renew it manually.
Important requirements
-
SSH access to the system with permission to kubectl.
-
The edoc services are not available during the update. Plan the restart with your team if necessary.
Solution
How to update the certificates of microk8s:
-
Start an SSH session.
-
Enter sudo microk8s refresh-certs to start the update process.
The certificates are updated and the services are restarted.