We could connect to the API-Server using "Curl" through the "X.509" certificate for authenticating users.

We pass the certificate authority though the "--client-ca-file" parameter.
the "Curl" program could also use TLS for communication. Kubernetes relies on TLS for securing its API requests.

The API requests gets the client's certificate through the "--cert" parameter, the private key through the "--key" parameter, and the certificate authority " through the "--cacert" parameter, as mentioned before.

Our "Curl" call to the API end point - gets the API endpoints from the API-Server - would look like:


We could get the above information about the certificates from the below output:


Brando Sabatini and Ikbal C ©. Powered by Blogger.