1OC ADM(1) June 2016 OC ADM(1)
2
6 oc adm create-node-config - Create a configuration bundle for a node
7
11 oc adm create-node-config [OPTIONS]
12
16 Create a configuration bundle for a node
17
21 --allow-disabled-docker=false
22 Allow the node to start without docker being available.
23 --dns-bind-address=""
26 An address to bind DNS to.
27 --dns-domain="cluster.local"
30 DNS domain for the cluster.
31 --dns-ip=""
34 DNS server IP for the cluster.
35 --expire-days=730
38 Validity of the certificates in days (defaults to 2 years). WARN‐
39 ING: extending this above default value is highly discouraged.
40 --hostnames=[]
43 Every hostname or IP you want server certs to be valid for. Comma
44 delimited list
45 --images="openshift/origin-${component}:${version}"
48 When fetching the network container image, use this format. The
49 latest release will be used by default.
50 --latest-images=false
53 If true, attempt to use the latest images for the cluster instead
54 of the latest release.
55 --listen=" ⟨https://0.0.0.0:10250"⟩
58 The address to listen for connections on (scheme://host:port).
59 --master=" ⟨https://localhost:8443"⟩
62 The API server's URL.
63 --network-plugin=""
66 Name of the network plugin to hook to for pod networking.
67 --node=""
70 The name of the node as it appears in etcd.
71 --node-client-certificate-authority="openshift.local.config/mas‐
74 ter/ca.crt"
75 The file containing signing authorities to use to verify requests
76 to the node. If empty, all requests will be allowed.
77 --node-dir=""
80 The client data directory.
81 --server-certificate=""
84 The server cert file for the node to serve secure traffic.
85 --server-key=""
88 The server key file for the node to serve secure traffic.
89 --signer-cert="openshift.local.config/master/ca.crt"
92 The certificate file.
93 --signer-key="openshift.local.config/master/ca.key"
96 The key file.
97 --signer-serial="openshift.local.config/master/ca.serial.txt"
100 The serial file that keeps track of how many certs have been
101 signed.
102 --volume-dir="openshift.local.volumes"
105 The volume storage directory. This path is not relativized.
106
110 --allow_verification_with_non_compliant_keys=false
111 Allow a SignatureVerifier to use keys which are technically
112 non-compliant with RFC6962.
113 --alsologtostderr=false
116 log to standard error as well as files
117 --application_metrics_count_limit=100
120 Max number of application metrics to store (per container)
121 --as=""
124 Username to impersonate for the operation
125 --as-group=[]
128 Group to impersonate for the operation, this flag can be repeated
129 to specify multiple groups.
130 --azure-container-registry-config=""
133 Path to the file containing Azure container registry configuration
134 information.
135 --boot_id_file="/proc/sys/kernel/random/boot_id"
138 Comma-separated list of files to check for boot-id. Use the first
139 one that exists.
140 --cache-dir="/builddir/.kube/http-cache"
143 Default HTTP cache directory
144 --certificate-authority=""
147 Path to a cert file for the certificate authority
148 --client-certificate=""
151 Path to a client certificate file for TLS
152 --client-key=""
155 Path to a client key file for TLS
156 --cloud-provider-gce-lb-src-cidrs=130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16
159 CIDRs opened in GCE firewall for LB traffic proxy health checks
160 --cluster=""
163 The name of the kubeconfig cluster to use
164 --container_hints="/etc/cadvisor/container_hints.json"
167 location of the container hints file
168 --containerd="unix:///var/run/containerd.sock"
171 containerd endpoint
172 --context=""
175 The name of the kubeconfig context to use
176 --default-not-ready-toleration-seconds=300
179 Indicates the tolerationSeconds of the toleration for
180 notReady:NoExecute that is added by default to every pod that does not
181 already have such a toleration.
182 --default-unreachable-toleration-seconds=300
185 Indicates the tolerationSeconds of the toleration for unreach‐
186 able:NoExecute that is added by default to every pod that does not
187 already have such a toleration.
188 --docker="unix:///var/run/docker.sock"
191 docker endpoint
192 --docker-tls=false
195 use TLS to connect to docker
196 --docker-tls-ca="ca.pem"
199 path to trusted CA
200 --docker-tls-cert="cert.pem"
203 path to client certificate
204 --docker-tls-key="key.pem"
207 path to private key
208 --docker_env_metadata_whitelist=""
211 a comma-separated list of environment variable keys that needs to
212 be collected for docker containers
213 --docker_only=false
216 Only report docker containers in addition to root stats
217 --docker_root="/var/lib/docker"
220 DEPRECATED: docker root is read from docker info (this is a fall‐
221 back, default: /var/lib/docker)
222 --enable_load_reader=false
225 Whether to enable cpu load reader
226 --event_storage_age_limit="default=24h"
229 Max length of time for which to store events (per type). Value is a
230 comma separated list of key values, where the keys are event types
231 (e.g.: creation, oom) or "default" and the value is a duration. Default
232 is applied to all non-specified event types
233 --event_storage_event_limit="default=100000"
236 Max number of events to store (per type). Value is a comma sepa‐
237 rated list of key values, where the keys are event types (e.g.: cre‐
238 ation, oom) or "default" and the value is an integer. Default is
239 applied to all non-specified event types
240 --global_housekeeping_interval=0
243 Interval between global housekeepings
244 --housekeeping_interval=0
247 Interval between container housekeepings
248 --httptest.serve=""
251 if non-empty, httptest.NewServer serves on this address and blocks
252 --insecure-skip-tls-verify=false
255 If true, the server's certificate will not be checked for validity.
256 This will make your HTTPS connections insecure
257 --kubeconfig=""
260 Path to the kubeconfig file to use for CLI requests.
261 --log-flush-frequency=0
264 Maximum number of seconds between log flushes
265 --log_backtrace_at=:0
268 when logging hits line file:N, emit a stack trace
269 --log_cadvisor_usage=false
272 Whether to log the usage of the cAdvisor container
273 --log_dir=""
276 If non-empty, write log files in this directory
277 --logtostderr=true
280 log to standard error instead of files
281 --machine_id_file="/etc/machine-id,/var/lib/dbus/machine-id"
284 Comma-separated list of files to check for machine-id. Use the
285 first one that exists.
286 --match-server-version=false
289 Require server version to match client version
290 -n, --namespace=""
293 If present, the namespace scope for this CLI request
294 --request-timeout="0"
297 The length of time to wait before giving up on a single server
298 request. Non-zero values should contain a corresponding time unit (e.g.
299 1s, 2m, 3h). A value of zero means don't timeout requests.
300 -s, --server=""
303 The address and port of the Kubernetes API server
304 --stderrthreshold=2
307 logs at or above this threshold go to stderr
308 --storage_driver_buffer_duration=0
311 Writes in the storage driver will be buffered for this duration,
312 and committed to the non memory backends as a single transaction
313 --storage_driver_db="cadvisor"
316 database name
317 --storage_driver_host="localhost:8086"
320 database host:port
321 --storage_driver_password="root"
324 database password
325 --storage_driver_secure=false
328 use secure connection with database
329 --storage_driver_table="stats"
332 table name
333 --storage_driver_user="root"
336 database username
337 --token=""
340 Bearer token for authentication to the API server
341 --user=""
344 The name of the kubeconfig user to use
345 -v, --v=0
348 log level for V logs
349 --version=false
352 Print version information and quit
353 --vmodule=
356 comma-separated list of pattern=N settings for file-filtered log‐
357 ging
358
362 oc-adm(1),
363
367 June 2016, Ported from the Kubernetes man-doc generator
368Openshift Openshift CLI User Manuals OC ADM(1)