Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: 4.17.0, 4.18.0
Component/s: HyperShift
Labels:
None

Regression:
None
Epic Link:
Support Azure Managed Service Identity (MSI) Authentication
Sprint:
Hypershift Sprint 259, Hypershift Sprint 260, Hypershift Sprint 261
sprint_count:
3
Release Blocker:
Proposed
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Type:
Release Note Not Required
Release Note Status:
In Progress
Target Version:

4.18.0
Target Backport Versions:

4.17.z

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

    We discovered that the azure-disk and azure-file-csi-controllers are reusing CCM managed identity. Each of these three components should have their own managed identity and not reuse another's managed identity.

Version-Release number of selected component (if applicable):

How reproducible:

    Every time

Steps to Reproduce:

    1. Create an AKS mgmt cluster
    2. Create a HCP with MI
    3. Observe azure-disk and azure-file controllers are reusing azure CCM MI

Actual results:

    the azure-disk and azure-file-csi-controllers are reusing CCM managed identity

Expected results:

    the azure-disk and azure-file-csi-controllers should each have their own managed identity

Additional info:

links to

openshift/csi-operator#290: OCPBUGS-42325: Set separate secrets for file and disk config on HyperShift

Assignee:: Bryan Cox

Reporter:: Bryan Cox

QA Contact:: Jie Zhao

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/09/23 3:53 PM

Updated:: 2024/10/25 2:45 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates