diff --git a/roles/kubernetes/master/tasks/kubeadm-setup.yml b/roles/kubernetes/master/tasks/kubeadm-setup.yml index bf43a080cc5be49e00c2ae668dd57e1ccd276afb..d37cfd3619658149e310a7e4cc683d4321a6a2a3 100644 --- a/roles/kubernetes/master/tasks/kubeadm-setup.yml +++ b/roles/kubernetes/master/tasks/kubeadm-setup.yml @@ -112,7 +112,7 @@ - kubeadm_already_run.stat.exists - name: kubeadm | Check if apiserver.crt contains all needed SANs - command: openssl x509 -noout -in "{{ kube_cert_dir }}/apiserver.crt" -checkip "{{ item }}" + command: openssl x509 -noout -in "{{ kube_cert_dir }}/apiserver.crt" -check{{ item|ipaddr|ternary('ip','host') }} "{{ item }}" with_items: "{{ apiserver_sans }}" register: apiserver_sans_check changed_when: "'does match certificate' not in apiserver_sans_check.stdout"