Kubectl error You must be logged in to the server (Unauthorized) when using kubectl

amazon-ec2 docker kubernetes amazon-eks
5,005

Solution 1

Try:

kops export kubecfg --admin

Solution 2

https://kops.sigs.k8s.io/releases/1.19-notes/#changes-to-kubernetes-config-export

Yes you need to pass the users as well.

kops export kubecfg --name --admin

Solution 3

You can try the following command

$ kops export kubecfg --admin --kubeconfig ~/workspace/kubeconfig --state=s3://YOUR-S3-BUCKET-NAME
Share:
5,005

Related videos on Youtube

likesmartphone
Author by

likesmartphone

Updated on September 18, 2022

Comments

  • likesmartphone
    likesmartphone over 1 year

    I proceeded with the work referring to the following site (I don't use EKS.I create k8s on ec2 using kops)

    Getting Started with kOps on AWS

    When I tried to call kubectl get service I got the message: error: You must be logged in to the server (Unauthorized)

    Here is what I did:

    1. Setup IAM user(create user and add role)

    2. Cluster State storage(S3)

    3. Prepare local environment

    export NAME=myfirstcluster.example.com 
export KOPS_STATE_STORE=s3://prefix-example-com-state-store

    1. Create cluster configuration kops create cluster--zones=us-west-2a${NAME}

    2. Build the Cluster kops update cluster ${NAME} --yes

    ★success★

    1. When I try to access the cluster e.g. kubectl get nodes, I keep receiving error: You must be logged in to the server (Unauthorized)

    Any idea how to fix this issue?

    I tried some other way.

    1. attach instance profile to EC2

    2. delete .kube/cache

    3. kubectl apply -f aws-auth.yaml

        apiVersion: v1 kind: ConfigMap metadata: name: aws-auth namespace: kube-system data: mapUsers: | - userarn: arn:aws:iam::xxxx:user/xxx username: xxx groups: - system:masters mapRoles: | - rolearn: arn:aws:iam::xxxx:role/xxx username: system:node:{{EC2PrivateDNSName}} groups: - system:bootstrappers - system:nodes  

    Same error: You must be logged in to the server (the server has asked for the client to provide credentials).

    1. Modify .kube/config users:
        name: xxclusterNAMExxx user: exec: apiVersion: client.authentication.k8s.io/v1alpha1 command: aws-iam-authenticator args: - "token" - "-i" - "xxclusterNAMExxx" env: - name: AWS_PROFILE value: "xxxx"

    All failed.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to serve static contents in a kubernetes application
How can I use a local docker image in Kubernetes?
KubeDNS error, server misbehaving
Passing multiple env files in docker run command
How does one use Apache in a Docker Container and write nothing to disk (all logs to STDIO / STDERR)?
Alert when docker container pod is in Error or CarshLoopBackOff kubernetes
How to tail all logs in a kubernetes cluster
Kubectl command throwing error: Unable to connect to the server: getting credentials: exec: exit status 2
How to initialize mysql container when created on Kubernetes?
How can a Kubernetes pod connect to database which is running in the same local network (outside the cluster) as the host?