$ oc adm must-gather
Mark a node as unschedulable. Manually marking a node as unschedulable blocks any new pods from being scheduled on the node, but does not affect existing pods on the node.
node1
as unschedulable$ oc adm cordon node1
Display and filter node logs.
$ oc adm node-logs --role master -u NetworkManager.service
Approve or reject certificate signing requests (CSRs).
$ oc adm certificate approve csr-sqgzp
Create a new project and specify administrative options.
$ oc adm new-project myproject --node-selector='type=user-node,region=east'
Create a client configuration for connecting to the server. This creates a
folder containing a client certificate, a client key, a server certificate
authority, and a kubeconfig
file for connecting to the master as the provided
user.
$ oc adm create-api-client-config \ --certificate-authority='/etc/origin/master/proxyca.crt' \ --client-dir='/etc/origin/master/proxy' \ --signer-cert='/etc/origin/master/proxyca.crt' \ --signer-key='/etc/origin/master/proxyca.key' \ --signer-serial='/etc/origin/master/proxyca.serial.txt' \ --user='system:proxy'
Create the default bootstrap policy.
policy.json
with the default bootstrap policy$ oc adm create-bootstrap-policy-file --filename=policy.json
Create a bootstrap project template.
$ oc adm create-bootstrap-project-template -o yaml
Create a template for customizing the error page.
$ oc adm create-error-template
Creates a basic .kubeconfig
file from client certificates.
.kubeconfig
file with the provided client certificates$ oc adm create-kubeconfig \ --client-certificate=/path/to/client.crt \ --client-key=/path/to/client.key \ --certificate-authority=/path/to/ca.crt
Output the inputs and dependencies of any builds.
perl
imagestream$ oc adm build-chain perl
Output shell completion code for the oc adm
commands for the specified shell.
oc adm
completion code for Bash$ oc adm completion bash
Manage the client configuration files. This command has the same behavior as the
oc config
command.
$ oc adm config view
$ oc adm config use-context test-context
Manage various aspects of the OpenShift Container Platform release process, such as viewing information about a release or inspecting the contents of a release.
changelog.md
$ oc adm release info --changelog=/tmp/git \ quay.io/openshift-release-dev/ocp-release:4.2.0-rc.7 \ quay.io/openshift-release-dev/ocp-release:4.2.0 \ > changelog.md
Verify the image signature of an image imported to the internal registry using the local public GPG key.
nodejs
image signature$ oc adm verify-image-signature \ sha256:2bba968aedb7dd2aafe5fa8c7453f5ac36a0b9639f1bf5b03f95de325238b288 \ --expected-identity 172.30.1.1:5000/openshift/nodejs:latest \ --public-key /etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release \ --save