1OC ADM(1) June 2016 OC ADM(1)
2
6 oc adm taint - Update the taints on one or more nodes
7
11 oc adm taint [OPTIONS]
12
16 Update the taints on one or more nodes.
17 · A taint consists of a key, value, and effect. As an argument
19 here, it is expressed as key=value:effect.
20 · The key must begin with a letter or number, and may contain
22 letters, numbers, hyphens, dots, and underscores, up to 253
23 characters.
24 · Optionally, the key can begin with a DNS subdomain prefix and
26 a single '/', like example.com/my-app
27 · The value must begin with a letter or number, and may contain
29 letters, numbers, hyphens, dots, and underscores, up to 63
30 characters.
31 · The effect must be NoSchedule, PreferNoSchedule or NoExecute.
33 · Currently taint can only apply to node.
35
38 --all=false
39 Select all nodes in the cluster
40 --allow-missing-template-keys=true
43 If true, ignore any errors in templates when a field or map key is
44 missing in the template. Only applies to golang and jsonpath output
45 formats.
46 -o, --output=""
49 Output format. One of: json|yaml|name|template|go-template|go-tem‐
50 plate-file|templatefile|jsonpath|jsonpath-file.
51 --overwrite=false
54 If true, allow taints to be overwritten, otherwise reject taint
55 updates that overwrite existing taints.
56 -l, --selector=""
59 Selector (label query) to filter on, supports '=', '==', and
60 '!='.(e.g. -l key1=value1,key2=value2)
61 --template=""
64 Template string or path to template file to use when -o=go-tem‐
65 plate, -o=go-template-file. The template format is golang templates [
66 ⟨http://golang.org/pkg/text/template/#pkg-overview⟩].
67 --validate=false
70 If true, use a schema to validate the input before sending it
71
75 --allow_verification_with_non_compliant_keys=false
76 Allow a SignatureVerifier to use keys which are technically
77 non-compliant with RFC6962.
78 --alsologtostderr=false
81 log to standard error as well as files
82 --application_metrics_count_limit=100
85 Max number of application metrics to store (per container)
86 --as=""
89 Username to impersonate for the operation
90 --as-group=[]
93 Group to impersonate for the operation, this flag can be repeated
94 to specify multiple groups.
95 --azure-container-registry-config=""
98 Path to the file containing Azure container registry configuration
99 information.
100 --boot_id_file="/proc/sys/kernel/random/boot_id"
103 Comma-separated list of files to check for boot-id. Use the first
104 one that exists.
105 --cache-dir="/builddir/.kube/http-cache"
108 Default HTTP cache directory
109 --certificate-authority=""
112 Path to a cert file for the certificate authority
113 --client-certificate=""
116 Path to a client certificate file for TLS
117 --client-key=""
120 Path to a client key file for TLS
121 --cloud-provider-gce-lb-src-cidrs=130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16
124 CIDRs opened in GCE firewall for LB traffic proxy health checks
125 --cluster=""
128 The name of the kubeconfig cluster to use
129 --container_hints="/etc/cadvisor/container_hints.json"
132 location of the container hints file
133 --containerd="unix:///var/run/containerd.sock"
136 containerd endpoint
137 --context=""
140 The name of the kubeconfig context to use
141 --default-not-ready-toleration-seconds=300
144 Indicates the tolerationSeconds of the toleration for
145 notReady:NoExecute that is added by default to every pod that does not
146 already have such a toleration.
147 --default-unreachable-toleration-seconds=300
150 Indicates the tolerationSeconds of the toleration for unreach‐
151 able:NoExecute that is added by default to every pod that does not
152 already have such a toleration.
153 --docker="unix:///var/run/docker.sock"
156 docker endpoint
157 --docker-tls=false
160 use TLS to connect to docker
161 --docker-tls-ca="ca.pem"
164 path to trusted CA
165 --docker-tls-cert="cert.pem"
168 path to client certificate
169 --docker-tls-key="key.pem"
172 path to private key
173 --docker_env_metadata_whitelist=""
176 a comma-separated list of environment variable keys that needs to
177 be collected for docker containers
178 --docker_only=false
181 Only report docker containers in addition to root stats
182 --docker_root="/var/lib/docker"
185 DEPRECATED: docker root is read from docker info (this is a fall‐
186 back, default: /var/lib/docker)
187 --enable_load_reader=false
190 Whether to enable cpu load reader
191 --event_storage_age_limit="default=24h"
194 Max length of time for which to store events (per type). Value is a
195 comma separated list of key values, where the keys are event types
196 (e.g.: creation, oom) or "default" and the value is a duration. Default
197 is applied to all non-specified event types
198 --event_storage_event_limit="default=100000"
201 Max number of events to store (per type). Value is a comma sepa‐
202 rated list of key values, where the keys are event types (e.g.: cre‐
203 ation, oom) or "default" and the value is an integer. Default is
204 applied to all non-specified event types
205 --global_housekeeping_interval=0
208 Interval between global housekeepings
209 --housekeeping_interval=0
212 Interval between container housekeepings
213 --httptest.serve=""
216 if non-empty, httptest.NewServer serves on this address and blocks
217 --insecure-skip-tls-verify=false
220 If true, the server's certificate will not be checked for validity.
221 This will make your HTTPS connections insecure
222 --kubeconfig=""
225 Path to the kubeconfig file to use for CLI requests.
226 --log-flush-frequency=0
229 Maximum number of seconds between log flushes
230 --log_backtrace_at=:0
233 when logging hits line file:N, emit a stack trace
234 --log_cadvisor_usage=false
237 Whether to log the usage of the cAdvisor container
238 --log_dir=""
241 If non-empty, write log files in this directory
242 --logtostderr=true
245 log to standard error instead of files
246 --machine_id_file="/etc/machine-id,/var/lib/dbus/machine-id"
249 Comma-separated list of files to check for machine-id. Use the
250 first one that exists.
251 --match-server-version=false
254 Require server version to match client version
255 -n, --namespace=""
258 If present, the namespace scope for this CLI request
259 --request-timeout="0"
262 The length of time to wait before giving up on a single server
263 request. Non-zero values should contain a corresponding time unit (e.g.
264 1s, 2m, 3h). A value of zero means don't timeout requests.
265 -s, --server=""
268 The address and port of the Kubernetes API server
269 --stderrthreshold=2
272 logs at or above this threshold go to stderr
273 --storage_driver_buffer_duration=0
276 Writes in the storage driver will be buffered for this duration,
277 and committed to the non memory backends as a single transaction
278 --storage_driver_db="cadvisor"
281 database name
282 --storage_driver_host="localhost:8086"
285 database host:port
286 --storage_driver_password="root"
289 database password
290 --storage_driver_secure=false
293 use secure connection with database
294 --storage_driver_table="stats"
297 table name
298 --storage_driver_user="root"
301 database username
302 --token=""
305 Bearer token for authentication to the API server
306 --user=""
309 The name of the kubeconfig user to use
310 -v, --v=0
313 log level for V logs
314 --version=false
317 Print version information and quit
318 --vmodule=
321 comma-separated list of pattern=N settings for file-filtered log‐
322 ging
323
327 # Update node 'foo' with a taint with key 'dedicated' and value 'special-user' and effect 'NoSchedule'.
328 # If a taint with that key and effect already exists, its value is replaced as specified.
329 oc adm taint nodes foo dedicated=special-user:NoSchedule
330 # Remove from node 'foo' the taint with key 'dedicated' and effect 'NoSchedule' if one exists.
332 oc adm taint nodes foo dedicated:NoSchedule-
333 # Remove from node 'foo' all the taints with key 'dedicated'
335 oc adm taint nodes foo dedicated-
336 # Add a taint with key 'dedicated' on nodes having label mylabel=X
338 oc adm taint node -l myLabel=X dedicated=foo:PreferNoSchedule
339
344 oc-adm(1),
345
349 June 2016, Ported from the Kubernetes man-doc generator
350Openshift Openshift CLI User Manuals OC ADM(1)