Hi Team,
While going through the TLS certificates in k8s cluster, I am able to understand how TLS certificates work but still not get clarity how it is getting implemented in K8s as whole. Could you please share me any blog or any reference to get more clarity. I had checked KodeKloud notes but there is no much information.
Thanks,
Debasis
Every main Kubernetes component uses PKI certificates to authenticate over TLS when talking to the kube-apiserver. This ensures secure, authenticated communication for all internal operations. Each component’s certificate and keys are stored in a well-known location, as described here.
Similarly, when users interact with a Kubernetes cluster ( Read kube-apiserver ), they authenticate using certificates. These certificates and keys are stored in your kubeconfig in a well-known location ~/.kube/config.