Skip to content
Snippets Groups Projects
Select Git revision
  • automated-updates-main
  • main default protected
  • dependabot/go_modules/scripts/github.com/golang-jwt/jwt/v4-4.5.2
  • dependabot/go_modules/scripts/golang.org/x/net-0.36.0
  • dependabot/go_modules/golang.org/x/net-0.36.0
  • dependabot/go_modules/k8s.io/apimachinery-0.32.3
  • dependabot/go_modules/k8s.io/client-go-0.32.3
  • release-0.13
  • automated-updates-release-0.13
  • dependabot/go_modules/scripts/github.com/open-policy-agent/opa-0.68.0
  • release-0.14
  • release-0.10
  • release-0.11
  • release-0.12
  • fix-versions-action
  • versions-fix
  • release-0.9
  • release-0.8
  • release-0.7
  • release-0.6
  • v0.14.0
  • v0.13.0
  • v0.12.0
  • v0.11.0
  • v0.10.0
  • v0.9.0
  • v0.8.0
  • v0.7.0
  • v0.6.0
  • v0.5.0
  • v0.4.0
  • v0.3.0
  • v0.2.0
  • v0.1.0
34 results
Blame Permalink
GKE-cadvisor-support.md 843 B

Kubelet / cAdvisor special configuration updates for GKE

Prior to GKE 1.11, the kubelet does not support token authentication. Until it does, Prometheus must use HTTP (not HTTPS) for scraping.

You can configure this behavior through kube-prometheus with:

local kp = (import 'kube-prometheus/kube-prometheus.libsonnet') +
    (import 'kube-prometheus/kube-prometheus-insecure-kubelet.libsonnet') +
	{
        _config+:: {
		# ... config here
		}
    };

Or, you can patch and re-apply your existing manifests with:

On linux:

sed -i -e 's/https/http/g' manifests/prometheus-serviceMonitorKubelet.yaml

On MacOs:

sed -i '' -e 's/https/http/g' manifests/prometheus-serviceMonitorKubelet.yaml

After you have modified the yaml file please run

kubectl apply -f manifests/prometheus-serviceMonitorKubelet.yaml