We could connect to the API-Server using "Curl"through the "X.509" certificate for authenticating users.
We pass the certificate authority though the "--client-ca-file" parameter. the "Curl" program could also use TLS for communication. Kubernetes relies on TLS for securing its API requests.
The API requests gets the client's certificate through the "--cert" parameter, the private key through the "--key" parameter, and the certificate authority " through the "--cacert" parameter, as mentioned before.
Our "Curl" call to the API end point - gets the API endpoints from the API-Server - would look like:
We could get the above information about the certificates from the below output: