Category Archives: Uncategorized

Adding a Name to the Kubernetes API Server Certificate

In this post, I’m going to walk you through how to add a name (specifically, a Subject Alternative Name) to the TLS certificate used by the Kubernetes API server. This process of updating the certificate to include a name that wasn’t included could find use for a few different scenarios. A couple of situations come… Read More »

Kubernetes Cilium Timeout while waiting for lock, forcefully unlocking…

level=warning msg=“Timeout while waiting for lock, forcefully unlocking…” path=“cilium/state/identities/v1/locks/k8s:app=branch-event-reporter;k8s:component=worker;k8s:io.cilium.k8s.policy.cluster=default;k8s:io.cilium.k8s.policy.serviceaccount=default;k8s:io.kubernetes.pod.namespace=default;” subsys=kvstore ETCDCTL_API=3 etcdctl –endpoints http://localhost:4001 get cilium –prefix | grep locks ETCDCTL_API=3 etcdctl –endpoints http://localhost:4001 lease revoke 2fbe6e11f2b4f3c3

Kafka JMX with SSL and user password authentication

The YUM repositories provide packages for RHEL, CentOS, and Fedora-based distributions. You can install individual Confluent Platform packages or the entire platform. For a list of available packages, see the documentation or you can search the repository (yum search <package-name>). Install the curl and which tools.sudo yum install curl which Copy Install the Confluent Platform public key. This key is used to sign… Read More »

Authenticating API Clients with JWT and NGINX Plus

JSON Web Tokens (JWTs, pronounced “jots”) are a compact and highly portable means of exchanging identity information. The JWT specification has been an important underpinning of OpenID Connect, providing a single sign‑on token for the OAuth 2.0 ecosystem. JWTs can also be used as authentication credentials in their own right and are a better way to control access to… Read More »

How to install Python 3 on CentOS 7

his tutorial will guide you through installing Python 3 on a CentOS 7 system using the Software Collections (SCL) along side the distribution default Python version 2.7. We will also show you how to create a Python virtual environment. Python is one of the most popular programming languages in the world, with its simple and… Read More »

Developing Alerts and Dashboards for Prometheus

Developing Alerts and Dashboards kube-prometheus ships with a set of default alerting rules and dashboards. At some point one might like to extend them. This document is intended to explain the workflow of how additional alerting rules and dashboards could be added. For both, the Prometheus alerting rules as well as the Grafana dashboards, there… Read More »

using helm to install prometheus

# Install helm https://docs.helm.sh/using_helm/ then run: helm repo add coreos https://s3-eu-west-1.amazonaws.com/coreos-charts/stable/ helm dep update helm install coreos/prometheus-operator –name prometheus-operator –namespace monitoring helm install coreos/kube-prometheus –name kube-prometheus –namespace monitoring How to contribute? Fork the project Make the changes in the helm charts Bump the version in Chart.yaml for each modified chart Update kube-prometheus/requirements.yaml file with the… Read More »