You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
3. Apply the changes with `kops update cluster ${CLUSTER_NAME}`.
161
+
If the cluster already exists, roll the cluster with `kops rolling-update cluster ${CLUSTER_NAME}` in order to recreate the master nodes.
162
+
4. Update the Authenticator DaemonSet's state and output volumes to both use `/srv/kubernetes/heptio-authenticator-aws/` for their `hostPath`s.
163
+
5. Apply the DaemonSet and ConfigMap resource manifests to launch the Authenticator server on the cluster.
164
+
165
+
*Note:* Certain Kops commands will overwrite the `ExecCredential` in kubeconfig so it may need to be restored manually. See [kubernetes/kops#5051](https://github.com/kubernetes/kops/issues/5051) for more information.
166
+
167
+
121
168
## How does it work?
122
169
It works using the AWS [`sts:GetCallerIdentity`](https://docs.aws.amazon.com/STS/latest/APIReference/API_GetCallerIdentity.html) API endpoint.
123
170
This endpoint returns information about whatever AWS IAM credentials you use to connect to it.
0 commit comments