joeypiccola:
I am reviewing the TLS in Kubernetes - Certificate Creation material. Is my understanding correct in that the kube-apiserver has three certs issued to itself (1 server and 2 clients)?
- a server cert for itself as defined with
--tls-cert-file - a client cert for communicating with etcd as defined with
--etcd-certfile - a client cert for communicating with kubelets as defined with
--kubelet-client-certificate
