-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
4.14, 4.15, 4.16, 4.17
Description of problem:
Private cluster does not need to set baseDomainResourceGroupName which is only used to locate public dns zones. But when using ccoctl to create IDC issuer and managed identities for private cluster using Microsoft Entra Workload Identity , the baseDomainResourceGroupName is required.
Version-Release number of selected component (if applicable):
4.16/4.15/4.14
How reproducible:
Always
Steps to Reproduce:
1.Create oidc issuer and managed identities for private cluster using Microsoft Entra Workload Identity using ccoctl. For azure private cluster, dnszone-resource-group-name should not require. 2. 3.
Actual results:
1. Create oidc issuer and managed identities for private cluster using Microsoft Entra Workload Identity using ccoctl. $ ./ccoctl azure create-all --name mihuang --region northcentralus --subscription-id xxx --tenant-id xxx --credentials-requests-dir credreqs --network-resource-group-name mihuangtest 2024/06/06 11:35:35 No --output-dir provided, defaulting output directory to the current working directory /home/hmx/CCO Error: required flag(s) "dnszone-resource-group-name" not set
Expected results:
1. Create oidc issuer and managed identities for private cluster using Microsoft Entra Workload Identity using ccoctl should not set dnszone-resource-group-name parameter.
Additional info:
$ ./openshift-install explain installconfig.platform.azure.baseDomainResourceGroupName KIND: InstallConfig VERSION: v1 RESOURCE: <string> BaseDomainResourceGroupName specifies the resource group where the Azure DNS zone for the base domain is found. This field is optional when creating a private cluster, otherwise required.
- blocks
-
CCO-621 [workflow] Creating an Azure private cluster using Microsoft Entra Workload identity.
-
- Code Review
-