✓ Solved

I am encountering a TokenRequest API warning after upgrading my LKE cluster. Is this something I should be concerned about?

Linode Staff

My LKE cluster was recently upgraded from a previous Kubernetes version to version 1.27. After the upgrade, I received this warning:

Warning: Use tokens from the TokenRequest API or manually created secret-based tokens instead of autogenerated secret-based tokens.

What does this warning message mean? What should I do to troubleshoot this issue?

3 Replies

✓ Best Answer

From our documentation:

When a Kubernetes version upgrade is initiated on an LKE cluster (including both patch versions and minor versions), the control plane components are automatically upgraded. New worker nodes are also created using the new version.

This warning appears because the Kubernetes version 1.27 release no longer automatically generates service account tokens for every service account. kubectl displays this warning because the auto-generated tokens from version 1.26 persist after the 1.27 upgrade.

To fix this warning, you’ll need to delete all secrets of type kubernetes.io/service-account-token that you haven't manually created yourself. More information about managing service tokens is available here:

After the tokens in kube-system are deleted, you will need to regenerate then download your Kubeconfig to restore access to your cluster. LKE will recreate the necessary tokens when you regenerate your Kubeconfig file. You can find more regenerating your Kubeconfig file here:

Our LKE changelogs are available here:

Hi. When I list out all of the secrets of that type in kube-system, I have tens of them. Please can you confirm whether I should be deleting all of them or just specific ones?

I have read the article with the understanding I should delete them all but, before I do that I wanted to check.


I deleted all the tokens using the command referenced in the release notes here: https://www.linode.com/docs/release-notes/lke/#linode-kubernetes-engine-v1540


Please enter an answer

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct