Skip to content

gardenadm_token_create.md

Latest commit

 

History

History
55 lines (39 loc) · 2.59 KB

gardenadm_token_create.md

File metadata and controls

55 lines (39 loc) · 2.59 KB

gardenadm token create

Create a bootstrap token on the cluster for joining a node or connecting a Shoot to Gardener

Synopsis

The [token] is the bootstrap token to be created on the cluster. This token is used for securely authenticating nodes or clients to the cluster. It must follow the format "[a-z0-9]{6}.[a-z0-9]{16}" to ensure compatibility with Kubernetes bootstrap token requirements. If no [token] is provided, gardenadm will automatically generate a secure random token for you.

gardenadm token create [token] [flags]

Examples

# Create a bootstrap token with a specific ID and secret
gardenadm token create foo123.bar4567890baz123

# Create a bootstrap token with a specific ID and secret and directly print the 'gardenadm join' command for joining a node
gardenadm token create foo123.bar4567890baz123 --print-join-command

# Create a bootstrap token with a specific ID and secret and directly print the 'gardenadm connect' command for connecting a Shoot to Gardener
gardenadm token create foo123.bar4567890baz123 --print-connect-command --shoot-namespace=garden --shoot-name=root

# Generate a random bootstrap token
gardenadm token create

Options

  -d, --description string        Description for the bootstrap token used for 'gardenadm join'
  -h, --help                      help for create
  -c, --print-connect-command     Instead of only printing the token, print the full machine-readable 'gardenadm connect' command that can be ran on a machine of a cluster that should be connected to Gardener
  -j, --print-join-command        Instead of only printing the token, print the full machine-readable 'gardenadm join' command that can be copied and ran on a machine that should join the cluster
      --shoot-name string         Name of the Shoot which should be connected to Gardener via 'gardenadm connect' with this bootstrap token
      --shoot-namespace string    Namespace of the Shoot which should be connected to Gardener via 'gardenadm connect' with this bootstrap token
      --validity duration         Validity duration of the bootstrap token. Minimum is 10m, maximum is 24h. (default 1h0m0s)
  -w, --worker-pool-name string   Name of the worker pool to use for the join command. (default "worker")

Options inherited from parent commands

      --log-format string   The format for the logs. Must be one of [json text] (default "text")
      --log-level string    The level/severity for the logs. Must be one of [debug info error] (default "info")

SEE ALSO

  • gardenadm token - Manage bootstrap and discovery tokens for gardenadm join