From 73a076a01593d2ab434d08ef5313ac2549fc1345 Mon Sep 17 00:00:00 2001
From: Sambo Chea <7059827+sombochea@users.noreply.github.com>
Date: Sun, 10 Oct 2021 12:00:46 +0700
Subject: [PATCH] Update README.md

---
 README.md | 42 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 42 insertions(+)

diff --git a/README.md b/README.md
index 8c1604b..bfd9aa5 100644
--- a/README.md
+++ b/README.md
@@ -199,5 +199,47 @@ helm install nfs-subdir-external-provisioner nfs-subdir-external-provisioner/nfs
     --set nfs.path=/exported-path
 ```
 
+#### Create Service Account for Kubernetes Dashboard Token
+- Create file: `dashboard-adminuser.yml`
+```yaml
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: admin-user
+  namespace: kube-system
+```
+```shell
+ kubectl apply -f dashboard-adminuser.yml
+ ```
+ 
+- Create file: `admin-role-binding.yml`
+```yaml
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: admin-user
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cluster-admin
+subjects:
+- kind: ServiceAccount
+  name: admin-user
+  namespace: kube-system
+```
+```shell
+ kubectl apply -f admin-role-binding.yml
+ ```
+- Get Token
+```shell
+kubectl -n kube-system describe secret $(kubectl -n kube-system get secret | grep admin-user | awk '{print $1}')
+```
+
+#### Get Kubernetes PKI Hash for Kubeadm
+```shell
+openssl x509 -pubkey -in /etc/kubernetes/pki/ca.crt | openssl rsa -pubin -outform der 2>/dev/null | \
+   openssl dgst -sha256 -hex | sed 's/^.* //'
+```
+
 #### References
 - https://kubernetes.io/docs/setup/production-environment/container-runtimes/#docker