From 95028d3ae82b175d398d96bdbe193d8d1fdb41dd Mon Sep 17 00:00:00 2001 From: Iceber Gu Date: Thu, 22 Sep 2022 12:54:17 +0800 Subject: [PATCH] sample-apiserver: create the client cert with SHA256 Signed-off-by: Iceber Gu --- staging/src/k8s.io/sample-apiserver/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/staging/src/k8s.io/sample-apiserver/README.md b/staging/src/k8s.io/sample-apiserver/README.md index 1c64372b4fa..bbf66b4fa26 100644 --- a/staging/src/k8s.io/sample-apiserver/README.md +++ b/staging/src/k8s.io/sample-apiserver/README.md @@ -152,7 +152,7 @@ only this superuser group is authorized. ``` shell openssl req -out client.csr -new -newkey rsa:4096 -nodes -keyout client.key -subj "/CN=development/O=system:masters" - openssl x509 -req -days 365 -in client.csr -CA ca.crt -CAkey ca.key -set_serial 01 -out client.crt + openssl x509 -req -days 365 -in client.csr -CA ca.crt -CAkey ca.key -set_serial 01 -sha256 -out client.crt ``` 3. As curl requires client certificates in p12 format with password, do the conversion: