Comment 3 for bug 1714880

We can try to pass this parameter to the apiserver --cert-dir
when tls-disbled.

from the docs [1]:

      --cert-dir string The directory where the TLS certs
                               are located. If --tls-cert-file and
                               --tls-private-key-file are provided,
                               this flag will be ignored. (default
                               "/var/run/kubernetes")

with /etc/kubernetes/certs/ (make sure that the dir exists in the non-tls case)

[1] https://kubernetes.io/docs/admin/kube-apiserver/