AWS eks documentation change
Summary
Converted markdown links to plain URLs for Kubernetes certificate documentation
Security assessment
Formatting change to external links. The security content about kubelet certificate rotation was pre-existing and not modified.
Diff
diff --git a/eks/latest/userguide/eks-outposts-self-managed-nodes.md b/eks/latest/userguide/eks-outposts-self-managed-nodes.md index 805dc736e..22d290875 100644 --- a//eks/latest/userguide/eks-outposts-self-managed-nodes.md +++ b//eks/latest/userguide/eks-outposts-self-managed-nodes.md @@ -56 +56 @@ You can create a self-managed node group for local cluster with the following to - * The certificates used by kubelet on your self-managed nodes are issued with one year expiration. By default certificate rotation is **not** enabled (see: [https://kubernetes.io/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration](https://kubernetes.io/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration)), this means if you have a self-managed node running for more than one year, it will no longer be able to authenticate to the Kubernetes API. + * The certificates used by kubelet on your self-managed nodes are issued with one year expiration. By default certificate rotation is **not** enabled (see: https://kubernetes.io/docs/reference/config-api/kubelet-config.v1beta1/#kubelet-config-k8s-io-v1beta1-KubeletConfiguration), this means if you have a self-managed node running for more than one year, it will no longer be able to authenticate to the Kubernetes API. @@ -60 +60 @@ You can create a self-managed node group for local cluster with the following to - * Alternatively you can also enable client certificate rotation (see: [https://kubernetes.io/docs/tasks/tls/certificate-rotation/](https://kubernetes.io/docs/tasks/tls/certificate-rotation/)) when creating the self-managed node groups to make sure kubelet certificates are renewed as the current certificate approaches expiration. + * Alternatively you can also enable client certificate rotation (see: https://kubernetes.io/docs/tasks/tls/certificate-rotation/) when creating the self-managed node groups to make sure kubelet certificates are renewed as the current certificate approaches expiration.