-
Bug
-
Resolution: Done
-
Critical
-
MCE 2.4.0
-
None
Description of problem:
Although the hypershift-addon appears to be successful and we can create the hosted cluster, the addon install job continues to fail.
The hypershift-install-job runs into Error state due to the following error in the addon log before spinning up a new pod to try again:
oc logs hypershift-install-job-2j2wd-lg94p -n open-cluster-management-agent-addon .. applied ConfigMap kube-public/oidc-storage-provider-s3-configError: mutatingwebhookconfigurations.admissionregistration.k8s.io "hypershift.openshift.io" is forbidden: User "system:serviceaccount:open-cluster-management-agent-addon:hypershift-addon-agent-sa" cannot patch resource "mutatingwebhookconfigurations" in API group "admissionregistration.k8s.io" at the cluster scopemutatingwebhookconfigurations.admissionregistration.k8s.io "hypershift.openshift.io" is forbidden: User "system:serviceaccount:open-cluster-management-agent-addon:hypershift-addon-agent-sa" cannot patch resource "mutatingwebhookconfigurations" in API group "admissionregistration.k8s.io" at the cluster sco
Version-Release number of selected component (if applicable):
ACM 2.9.0-DOWNSTREAM-2023-08-15-03-00-04
How reproducible:
always
Steps to Reproduce:
- install ACM
- observe the hypershift-install-job pods in theĀ open-cluster-management-agent-addon namespace
- ...
Actual results:
Expected results:
Additional info:
- account is impacted by
-
ACM-1659 Enable Hypershift feature by default in MCE
-
- Closed
-
